vapi
Vulnerability simulator
An API simulator designed to test and demonstrate common web application security vulnerabilities
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
1k stars
19 watching
310 forks
Language: HTML
last commit: about 2 years ago apiapitop10appsecappsec-tutorialsbugbountycorsdockerexerciseshacktoberfesthacktoberfest-acceptedowaspowasp-top-10owasp-top-tenphppostmanvulnerable-application
Related projects:
| Repository | Description | Stars |
|---|---|---|
 appsecco/dvna | A tool to demonstrate common vulnerabilities in web applications and provide guidance on fixing them. | 712 |
 mihir-shah99/vulndroid | An Android app designed to demonstrate common web application vulnerabilities and provide training in secure coding practices. | 10 |
 erev0s/vampi | A vulnerable REST API demonstration project | 940 |
| appsecco/vyapi | An open-source Android app project designed to demonstrate and test modern Android app vulnerabilities. | 84 |
 s4n7h0/xvwa | A training tool to help security enthusiasts learn web application security vulnerabilities and weaknesses by practicing on a deliberately flawed web application. | 1,700 |
 aif4thah/vulnerablelightapp | An educational API project designed to demonstrate various vulnerabilities and security flaws in a web application. | 32 |
 sea-erkin/log-snare | A web application designed to simulate vulnerabilities and demonstrate the importance of proper validation and logging. | 31 |
 adamdoupe/wackopicko | A test website used to evaluate web application security tools and identify vulnerabilities. | 328 |
 yavuzlar/vulnlab | An open-source web application testing lab designed to simulate various web vulnerabilities. | 396 |
 owasp/webgoat.net | A penetration testing tool designed to simulate real-world web application vulnerabilities. | 69 |
 mushorg/glastopf | A Python-based web application honeypot that simulates common web application vulnerabilities to detect and analyze potential threats. | 564 |
 webpwnized/mutillidae | An intentionally vulnerable web application designed to aid in learning and practicing web security skills | 1,282 |
 prateek147/dvia | An iOS application designed to test mobile security skills by simulating common vulnerabilities and providing resources for learning iOS app security. | 431 |
| owasp/dvsa | An intentionally vulnerable serverless application for testing security skills and understanding secure development practices. | 534 |
| owasp/nodegoat | An environment to learn about OWASP Top 10 security risks in Node.js web applications | 1,895 |