Go Test Bench

Intentionally vulnerable go app. Used Go's standard library, net/http, for client/server implementations. For more info on this framework, visit net/http.

The go-test-bench application includes vulnerabilities from the OWASP Top 10 and is intended to be used as an educational tool for developers and security professionals. Any maintainers are welcome to make pull requests.

For customer demonstrations click here to follow the Demo.md readme.

Installation Requirements

Go 1.16 or higher
Optional Docker for Mac

How to Run Locally

    go build -o app ./cmd/std # or ./cmd/gin for Gin framework
    ./app

View app at http://localhost:8080

How to Run Using Docker

    # To stand up application with standard library
    docker-compose up std -d
    # Alternative: To stand up application with Gin framework
    # docker-compose up gin -d

    # To stop app container and related service containers
    docker-compose down

View app at http://0.0.0.0:8080

Acknowledgements

The development team.

About

Intentionally vulnerable Go web app.

MIT License

Languages

Language:Go 92.0%Language:CSS 5.5%Language:Shell 1.4%Language:Dockerfile 1.1%