Tutorials – Web Applications

In this video trainer Eric Fulton talks about Web Application Penetration Testing and Web application Assessments.
http://www.securitytube.net/video/5436

Google have created a web page providing a basic introduction to application security which is aimed at anyone who develops websites or is interested in web security topics. They recommend a basic  background in HTML, JavaScript, and Document Object Model (DOM) might be helpful for some of the more technical details however, this page provides a nice introduction even for those who don’t – http://www.google.com/about/appsecurity/learning/xss/

Metasploitable
The Metasploit Framework is a tool for developing and executing exploit codes against a remote target machine. Here you have a tutorial designed to help people understand some features of the tool – http://www.offensive-security.com/metasploit-unleashed/Requirements