If you want to learn by doing instead of learn by reading, here are a couple projects I found very interesting:
In a nutshell, these are web applications that are deliberately insecure. You can practice common exploits and hacks on them to get yourself more familiar.
In a nutshell, these are web applications that are deliberately insecure. You can practice common exploits and hacks on them to get yourself more familiar.