Vulnerable app with examples showing how to not use secrets
-
Updated
Dec 23, 2024 - Java
Vulnerable app with examples showing how to not use secrets
Vulnerable REST API with OWASP top 10 vulnerabilities for security testing
OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber
A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
Vulnerable Banking Suite
Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
A simple PHP application to learn SQL Injection detection and exploitation techniques.
Vulnerable API for educational purposes
The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
A server vulnerable to XXE that can be used to test payloads using the xxer tool.
docker-compose bringing up multiple vulnerable applications inside containers.
This project is a vulnerable web application to practice on. It is designed for educational purposes to help security enthusiasts and developers understand and mitigate common web vulnerabilities.
📧 [Research] E-Mail Injection: Vulnerable applications
OWASP Foundation Web Respository
Vulnerable Web application made with PHP/SQL designed to help new web testers gain some experience and test DAST tools for identifying web vulnerabilities. Containing some of the most well-known vulnerabilities such as SQL, cross-site scripting (XSS), OS command injections, our intention to expand more vulnerabilities for learning purposes.
Vulnerable FastAPI in reference to Opensource Web Application Security Project (OWASP) TOP 10: 2021
SSJS Web Shell Injection Case
This is a collection of vulnerable machines that can help you to learn hacking, pentesting and bug hunting. I know there are a lot of lists out there, but most of them are not updated regularly. So I decided to make on myself. Hope this will help you
Add a description, image, and links to the vulnerable-web-app topic page so that developers can more easily learn about it.
To associate your repository with the vulnerable-web-app topic, visit your repo's landing page and select "manage topics."