OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
-
Updated
May 17, 2024 - TypeScript
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Damn Vulnerable NodeJS Application
Damn Vulnerable Web Application Docker container
The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
A Broken Application - Very Vulnerable!
Awesome Vulnerable Applications
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
Twitter vulnerable snippets
A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.
🔬 A collection of test cases in the Java language. It contains examples for 112 different CWEs.
Intentionally vulnerable Android application.
An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.
Repository to showcase various configuration recipes with various technologies
Damn Vulnerable eXtensive Training Environment
Web application with vulnerabilities found in real cases, both in pentests and in Bug Bounty programs.
Vulnerable OTP/2FA Application written in PHP using Google Authenticator
OpenSSH remote DOS exploit and vulnerable container
Frida scripts for mobile application dynamic-analysis.
Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
Add a description, image, and links to the vulnerable topic page so that developers can more easily learn about it.
To associate your repository with the vulnerable topic, visit your repo's landing page and select "manage topics."