fabraun Goto Github PK

authlab

A lab to play with authentication and authorisation problems

bodgeit

The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.

brokencrystals

A Broken Application - Very Vulnerable!

clicker-service

copy of https://gitlab.com/r00k/clicker-service for testing

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

cvwa

Conviso Vulnerable Web Application is the OSS project from the Conviso Application Security for the community. The project represents a vulnerable web application to practice security testing and improve your learning in AppSec..

damn-vulnerable-bank

Damn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.

damn-vulnerable-graphql-application

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

diwa

A Deliberately Insecure Web Application

dsvw

Damn Small Vulnerable Web

dvja

Damn Vulnerable Java (EE) Application

dvna

Damn Vulnerable NodeJS Application

dvpwa

Damn Vulnerable Python Web App

dvwa

Damn Vulnerable Web Application (DVWA)

dvws

OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.

dvws-node

Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.

hammer

An example of a mis-configured Rails application release under MIT license.

javavulnerablelab

Vulnerable Java based Web Application

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

nodegoat

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

nodejs-goof

Super vulnerable todo list application

pygoat

intentionally vuln web Application Security in django

railsgoat

A vulnerable version of Rails that follows the OWASP Top 10

spring-boot

Spring Boot

tiredful-api

An intentionally designed broken web application based on REST API.

vapi

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

vulnerable-node

A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools

vulnerableapp

OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.

vulnerableapp-facade

VulnerableApp-facade is probably most modern lightweight distributed farm of Vulnerable Applications built for handling wide range of vulnerabilities across tech stacks.

vulnlab