The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
-
Updated
May 16, 2024
The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
VulnerableApp-facade is probably most modern lightweight distributed farm of Vulnerable Applications built for handling wide range of vulnerabilities across tech stacks.
The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site
OWASP Foundation Web Respository
vuln-netframework is a .net-framework 4.7 project that include worst coding practices about common vulnerabilities like Insecure Deserialization, Os Command Injection, SQL Injection, etc.
Vulnerable API for educational purposes
A simple vulnerable token machine written in python.
Some vulnerables docker webapps
Infosec Coffee is a deliberately vulnerable web application to better understand interesting security flaws.
📧 [Research] E-Mail Injection: Vulnerable applications
A Spring-Boot based web application for booking flights (fake data) that may contains vulnerabilities. Course project for UCD COMP47660 Secure Software Engineering
Bash script to install docker and OWASPs juice-shop vulnerable webapp. Run this and browse to http://localhost:3000
A really cool community web application... that's vulnerable (Made for CNY Hackathon 2019)
Simple flask app to demonstrate Server-Side Request Forgery (SSRF) attack
Hackademy is a Vulnerable Web Application, Made to practice and study the web security in depth from the Back-end perspective and understands how vulnerabilities get to arise
"InsecureTrust_Bank: Educational repo demonstrating web app vulnerabilities like SQL injection & XSS for security awareness. Use responsibly.
Vulnerable web app made for CNY Hackathon
Unofficial VirtualBox virtual machine instance of OWASP Juice Shop
Vulnerabilities scanner tool
Add a description, image, and links to the vulnerable-web-application topic page so that developers can more easily learn about it.
To associate your repository with the vulnerable-web-application topic, visit your repo's landing page and select "manage topics."