mutillidae
Web hacking simulator
A deliberately vulnerable web application providing a controlled environment for learning and practicing web security skills.
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.
1k stars
49 watching
414 forks
Language: PHP
last commit: 4 days ago 10applicationappseccybersecurityowaspowasp-top-10penetration-testingsecuritytoptrainingweb
Related projects:
| Repository | Description | Stars |
|---|---|---|
 owasp/webgoat.net | A penetration testing tool designed to simulate real-world web application vulnerabilities. | 69 |
| owasp/owaspwebgoatphp | An interactive web application designed to teach web application security through challenges and lessons. | 122 |
| owasp/securityshepherd | A training platform for web and mobile application security testing and learning | 1,348 |
 mushorg/glastopf | A Python-based web application honeypot that simulates common web application vulnerabilities to detect and analyze potential threats. | 561 |
 interference-security/dvws | An OWASP vulnerable web application demonstrating various security vulnerabilities using WebSockets | 342 |
 s4n7h0/xvwa | A training tool to help security enthusiasts learn web application security vulnerabilities and weaknesses by practicing on a deliberately flawed web application. | 1,699 |
 aif4thah/vulnerablelightapp | A vulnerable backend application designed to be hacked and used for educational purposes | 28 |
 jerryhoff/webgoat.net | An educational web application designed to demonstrate common web security flaws and their countermeasures. | 223 |
 mihir-shah99/vulndroid | An Android app designed to demonstrate common web application vulnerabilities and provide training in secure coding practices. | 10 |
 roottusk/vapi | An API simulator designed to test and demonstrate common web application security vulnerabilities | 1,177 |
| owasp/dvsa | An intentionally vulnerable serverless application for testing security skills and understanding secure development practices. | 534 |
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,526 |
| owasp/python-honeypot | Automated deception framework to detect and respond to cyber threats | 434 |
 appsecco/dvna | A tool to demonstrate common vulnerabilities in web applications and provide guidance on fixing them. | 705 |
| owasp/owasp-vwad | A registry of known vulnerable web applications | 873 |