Skip to content
/ play-webgoat Public

A vulnerable Play application for attackers.

License

CC0-1.0 license
17 stars 69 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

playframework/play-webgoat

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

173 Commits

.github

.github

 
 

app

app

 
 

conf

conf

 
 

project

project

 
 

public

public

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

build.sbt

build.sbt

 
 

Repository files navigation

play-webgoat

Twitter Follow Discord GitHub Discussions StackOverflow YouTube Twitch Status OpenCollective

Build Status Repository size Scala Steward badge Mergify Status

A vulnerable Play application for attackers.

This application stays clear of the Twirl template engine for the most part, and shows where unvalidated input from the client can be improperly trusted by the application and included in the response.

Running

sbt run

Then go to http://localhost:9000.

Scala versions

Cross-building to Scala 2.13 and 3 is supported.

About

A vulnerable Play application for attackers.

Topics

sample jvm example sample-app webapp example-project playframework

Resources

Readme

License

CC0-1.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

17 stars

Watchers

9 watching

Forks

69 forks
Report repository

Sponsor this project

  •  
Learn more about GitHub Sponsors

Contributors 13

Languages