OWASP-VWAD
Web app vulnerabilities
A registry of known vulnerable web applications
This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
873 stars
60 watching
222 forks
last commit: 29 days ago appsecowaspvulnerablevulnerable-web-appvulnerable-web-application
Related projects:
| Repository | Description | Stars |
|---|---|---|
 chuckfw/owaspbwa | A collection of vulnerable web applications demonstrating common web application security issues. | 294 |
| owasp/railsgoat | A vulnerable Ruby on Rails application designed to educate developers about common web security vulnerabilities. | 869 |
| owasp/benchmark | A collection of examples and benchmarks to test the robustness of Java applications against various attacks and vulnerabilities | 3 |
 0xradi/owasp-web-checklist | A comprehensive checklist for web application security testing and vulnerability assessment | 1,750 |
| owasp/dvsa | An intentionally vulnerable serverless application for testing security skills and understanding secure development practices. | 534 |
 interference-security/dvws | An OWASP vulnerable web application demonstrating various security vulnerabilities using WebSockets | 342 |
 appsecco/dvna | A tool to demonstrate common vulnerabilities in web applications and provide guidance on fixing them. | 706 |
 anxolerd/dvpwa | This Damn Vulnerable Python Web Application is designed to demonstrate real-world vulnerabilities in web development using a well-designed application | 163 |
| owasp/joomscan | Automated vulnerability scanner for Joomla CMS deployments to identify potential security issues. | 1,078 |
 qazbnm456/vwgen | Automates the creation of vulnerable web applications for testing and security research purposes. | 84 |
 stamparm/dsvw | A deliberately vulnerable web application designed to demonstrate various common web vulnerabilities | 785 |
 sectooladdict/wavsep | An open-source tool for evaluating web application vulnerabilities by analyzing the separation of concerns in web applications. | 228 |
 ramadhanamizudin/lazyweb | A web application demonstrating common server-side application flaws and vulnerabilities. | 116 |
| owasp/webgoat.net | A penetration testing tool designed to simulate real-world web application vulnerabilities. | 69 |
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,531 |