Skip to content

bmdyy/testr

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits

.docker

.docker

 
 

.exploit

.exploit

 
 

static

static

 
 

templates

templates

 
 

Dockerfile

Dockerfile

 
 

README.md

README.md

 
 

app.py

app.py

 
 

db_utils.py

db_utils.py

 
 

Repository files navigation

Testr

Metadata

  • Author: William Moody
  • Started: 22.03.2021

Description

Testr is an invite-only web-based IDE for Python, created with the purpose of practicing web-app vulnerabilities. Specifically XSS and Code injecetion / Filter bypassing.

There is a cronjob which emualates admin actions every minute in the docker container.

Set Up

  1. Clone the repo locally git clone https://github.com/bmdyy/testr
  2. Enter the folder cd testr
  3. Build the docker container: docker build -t testr .
  4. Run the container: docker run -t testr

Solutions

Solutions and explanations may be found in ./exploit

About

TESTR - Vulnerable Python Web-App to practice XSS and Command Injection

Topics

oswe awae

Resources

Readme
Activity

Stars

21 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages