OWASP-VWAD
Web app vulnerabilities
A registry of known vulnerable web applications
This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
872 stars
60 watching
222 forks
last commit: 4 months ago appsecowaspvulnerablevulnerable-web-appvulnerable-web-application
Related projects:
| Repository | Description | Stars |
|---|---|---|
 chuckfw/owaspbwa | A collection of vulnerable web applications demonstrating common web application security issues. | 298 |
| owasp/railsgoat | A vulnerable Ruby on Rails application designed to educate developers about common web security vulnerabilities. | 872 |
| owasp/benchmark | A collection of examples and benchmarks to test the robustness of Java applications against various attacks and vulnerabilities | 3 |
 0xradi/owasp-web-checklist | A comprehensive checklist for web application security testing and vulnerability assessment | 1,763 |
| owasp/dvsa | An intentionally vulnerable serverless application for testing security skills and understanding secure development practices. | 534 |
 interference-security/dvws | An OWASP vulnerable web application demonstrating various security vulnerabilities using WebSockets | 346 |
 appsecco/dvna | A tool to demonstrate common vulnerabilities in web applications and provide guidance on fixing them. | 712 |
 anxolerd/dvpwa | This Damn Vulnerable Python Web Application is designed to demonstrate real-world vulnerabilities in web development using a well-designed application | 164 |
| owasp/joomscan | Automated vulnerability scanner for Joomla CMS deployments to identify potential security issues. | 1,088 |
 qazbnm456/vwgen | Automates the creation of vulnerable web applications for testing and security research purposes. | 84 |
 stamparm/dsvw | A deliberately vulnerable web application designed to demonstrate various common web vulnerabilities | 794 |
 sectooladdict/wavsep | An open-source tool for evaluating web application vulnerabilities by analyzing the separation of concerns in web applications. | 232 |
 ramadhanamizudin/lazyweb | A web application demonstrating common server-side application flaws and vulnerabilities. | 116 |
| owasp/webgoat.net | A penetration testing tool designed to simulate real-world web application vulnerabilities. | 69 |
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,545 |