Kanata is a suite of vulnerable by design web applications that provides a safe and legal environment for students to learn and practice white-box testing approaches. Kanata equips students with the skills they need to identify vulnerabilities in web applications and build effective security mitigations.
Students are presented with a range of web applications that simulate real-world scenarios, allowing them to apply their knowledge in a practical setting. By working through these challenges, students gain hands-on experience with common security threats and learn how to develop effective mitigation strategies.
- Contains a variety of web applications with intentionally designed vulnerabilities.
- Allows students to explore different types of vulnerabilities and learn how to exploit and mitigate them.
- Each web application provides various endpoints to interact with.
- Includes easy-to-start docker containers that deploys the web applications.
- Contains detailed solutions that are delivered via text and video.
To set up Kanata on your machine, you can follow these steps for a smooth installation process:
- Docker
- Python3
- NodeJS & npm
- Clone the Kanata repository
- Start the Kanata dashboard
- Have fun!
First, we will copy the link to git clone.
Then, clone the repository into a folder.
Next, run the install tools python script to install all necessary tools. Hit Y for all.
In the frontend directory, run the command npm install.
Start the backend server.
In a new terminal, and inside the frontend directory, serve the frontend.
Now you can go to the local link provided to view the frontend.
You can use the install-tools.py script to install tools such as Visual Studio Code, Burp Suite Community, JD-GUI, and Docker.
python3 install-tools.py
