vulnerable

There are 11 repositories under vulnerable topic.

juice-shop
juice-shop / juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
24pullrequests application-security appsec ctf hacking hacktoberfest javascript owasp owasp-top-10 owasp-top-ten pentesting security vulnapp vulnerable
Language:TypeScript 9498
awesome-vulnerable
kaiiyer / awesome-vulnerable
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
awesome awesome-list badstore bwapp hack hacking-skills hacktoberfest hacktoberfest2022 lab penetration-skills penetration-testing pentest security-protection security-shepherd test-lab vulnerabilities vulnerable vulnerable-apps
845
vavkamil / awesome-vulnerable-apps
Awesome Vulnerable Applications
awesome awesome-list bug bugbounty hacking penetration-testing security vulnerable vulnerable-applications
839
yeswehack / vulnerable-code-snippets
Twitter vulnerable snippets
bugbounty code code-analyze example-code owasp snippets vulnerable web-application websecurity worst-practices
Language:PHP 829
OWASP / OWASP-VWAD
The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
appsec vulnerable-web-app vulnerable-web-application vulnerable owasp
819
appsecco / dvna
Damn Vulnerable NodeJS Application
dvna hack nodejs owasp owasp-top-10 security testing vulnerable vulnerable-apps
Language:SCSS 662
kagurazakasanae / Mhyprot2DrvControl
A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.
driver kernel mhyprot2 vulnerable windows
Language:C# 332
abhi-r3v0 / EVABS
An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.
android-app android-security application-security mobile-app mobile-security mobile-pentest android-pentest ctf-challenges mobile-ctf android-application-vulnerabilities android-ctf pentesting vulnerable android-labs ctf-platform
Language:CMake 213
opsxcq / docker-vulnerable-dvwa
Damn Vulnerable Web Application Docker container
docker dvwa hacking training training-labs vulnerabilities vulnerable web-app web-application
Language:PHP 194
t0thkr1s / allsafe
Intentionally vulnerable Android application.
android bugbounty bypass certificate dynamic-analysis forthebadge frida frida-scripts hackerone-reports hardcoded-credentials mobile-security reverse reverse-engineering vulnerabilities vulnerable vulnerable-android-apps
Language:Java 186
takito1812 / web-hacking-playground
Web application with vulnerabilities found in real cases, both in pentests and in Bug Bounty programs.
hacking pentesting security bugbounty flask infosec training vulnerable
Language:Python 162
NeuraLegion / brokencrystals
A Broken Application - Very Vulnerable!
benchmark cyber-security devops nestjs nodejs react secops security typescript vulnerable
Language:CSS 107
davevs / dvxte
Damn Vulnerable eXtensive Training Environment
docker training vulnerable
Language:Dockerfile 101
vucsa
Warxim / vucsa
Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
client-server ctf hacking penetration-testing thick-client vulnerable vulnerable-application challenges vulnerable-app security application-security appsec capture-the-flag ctf-challenges vulnapp rce remote-code-execution sql-injection java vulnerability
Language:Java 93
DamnVulnerableCryptoApp
DamnVulnerableCryptoApp / DamnVulnerableCryptoApp
An app with really insecure crypto. To be used to see/test/exploit weak cryptographic implementations as well as to learn a little bit more about crypto, without the need to dive deep into the math behind it
crypto md5 sha1 aes rsa cbc ecb block reordering iv detection padding collisions damn vulnerable weak random oracle
Language:TypeScript 85
fportantier / vulpy
Vulnerable Python Application To Learn Secure Development
python flask sqlite security vulnerable web
Language:Python 83
t0thkr1s / frida
Frida scripts for mobile application dynamic-analysis.
android bruteforce bugbounty bugbounty-tool bypass certificate-pinning demo dynamic-analysis frida frida-scripts hooking infosec jni jni-android native penetration-testing red-team reverse-engineering security vulnerable
Language:Python 83
mddanish / Vulnerable-OTP-Application
Vulnerable OTP/2FA Application written in PHP using Google Authenticator
otp-applications google-authenticator multifactor otp-bypass vulnerable php
Language:PHP 82
opsxcq / exploit-CVE-2016-6515
OpenSSH remote DOS exploit and vulnerable container
openssh exploit vulnerable docker container
Language:JavaScript 53
find-sec-bugs / juliet-test-suite
:microscope: A collection of test cases in the Java language. It contains examples for 112 different CWEs.
vulnerable application sample code
Language:Java 47
tristanlatr / WPWatcher
Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found.
alerts asynchronous auto automate batch bulk email mass multiple report scan service sites syslog vulnerable warnings wordpress wpscan
Language:Python 45
find-sec-bugs / find-sec-bugs-demos
Repository to showcase various configuration recipes with various technologies
build-analysis code configuration-recipes continuous-integration sample vulnerable
Language:HTML 35
MobSF / MobSF-Related-Materials
MobSF related Presentations, Slides and Others.
exploit mobsf poc reversing scripts slides tools vulnerable
Language:Java 28
fabaff / fsl-test-bench
FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching security testing methodologies, testing tools, learning, and playing.
ansible fedora fedora-security-lab pentesting playground security vulnerable
Language:Jinja 27
ins1gn1a / VulnServer-Linux
Intentionally vulnerable Linux application for buffer overflow and RCE development practice
buffer-overflow vulnerable
Language:C 27
hackingyseguridad / nmap
Detectar vulnerabilidades script con nmap
citrix citrix-netscaler cve-2019-19781 cve-2021-41773 cve-2022-39952 cve-2022-40684 cve-2023-20198 cve-2023-36845 detectar escaneo exploit nmap path scan traversal vulnerabilidad vulnerable
Language:Lua 25
arall / vulnerabilities
Examples of different vulnerabilities, in a variety of languages, shapes and sizes.
dast sast security vulnerabilities vulnerability vulnerable vulnerable-app vulnerable-application
Language:HTML 24
opsxcq / exploit-CVE-2016-7434
NTPD remote DOS exploit and vulnerable container
ntpd docker exploitation express vulnerable vulnerable-container
Language:C 24
SecuraBV / brokenbydesign-azure
A broken-by-design Azure environment to practice and train security skills in the cloud domain.
azure ctf defcon hacking hacktoberfest learning secura terraform vulnerable azure-ctf cloud cloud-village dc20 defcon20
Language:Shell 23
codingo / cracknet
A .net Crackme Challenge made for the SecTalks Brisbane 2017 Capture the Flag Event. Writeup/solution included.
ctf ctf-writeups ctf-solutions capture-the-flag reverse-engineering decompile challenges ctf-challenges security vulnerable-application vulnerable radare2 ida challenge writeup
Language:C# 21
sectool / Python-Nikto-Vulnerability-Report-Tool
Nikto Vulnerability Report Tool 🌌
nikto vulnerability vulnerability-report report-tool vulnerabilities vulnerability-scanners vulnerable python-project project reporting report python-apps python-application security-tools security-vulnerability security-scanner security-testing penetration-testing pentesting pentest-tool
Language:Python 20
araavp / instacart-delivery-slot-finder
Mac Script that notifies you once a delivery slot in available on Instacart
covid19 covid-19 highschool-students instacart script delivery-service automate opportunities vulnerable delivery-slot notifies food pandemic epidemic
18
sec4you / VulnLabs
docker-compose bringing up multiple vulnerable applications inside containers.
docker docker-compose vulnerabilities vulnerable vulnerable-application vulnerable-container vulnerable-web-app
18
stypr / vulnerable-nodejs-express-mysql
Example of a vulnerable NodeJS+Express+MySQL service
0day dvwa nodejs pentest security sqli vulnerability vulnerable
Language:JavaScript 18
Al1ex / Alibab-Nacos-Unauthorized-Login
Alibab Nacos Unauthorized Login
cve nacos vulnerable
13
bhdresh / CVE-2018-11776
Vulnerable docker container for CVE-2018-11776
vulnerable docker cve-2018-11776
11

vulnerable

juice-shop / juice-shop

kaiiyer / awesome-vulnerable

vavkamil / awesome-vulnerable-apps

yeswehack / vulnerable-code-snippets

OWASP / OWASP-VWAD

appsecco / dvna

kagurazakasanae / Mhyprot2DrvControl

abhi-r3v0 / EVABS

opsxcq / docker-vulnerable-dvwa

t0thkr1s / allsafe

takito1812 / web-hacking-playground

NeuraLegion / brokencrystals

davevs / dvxte

Warxim / vucsa

DamnVulnerableCryptoApp / DamnVulnerableCryptoApp

fportantier / vulpy

t0thkr1s / frida

mddanish / Vulnerable-OTP-Application

opsxcq / exploit-CVE-2016-6515

find-sec-bugs / juliet-test-suite

tristanlatr / WPWatcher

find-sec-bugs / find-sec-bugs-demos

MobSF / MobSF-Related-Materials

fabaff / fsl-test-bench

ins1gn1a / VulnServer-Linux

hackingyseguridad / nmap

arall / vulnerabilities

opsxcq / exploit-CVE-2016-7434

SecuraBV / brokenbydesign-azure

codingo / cracknet

sectool / Python-Nikto-Vulnerability-Report-Tool

araavp / instacart-delivery-slot-finder

sec4you / VulnLabs

stypr / vulnerable-nodejs-express-mysql

Al1ex / Alibab-Nacos-Unauthorized-Login

bhdresh / CVE-2018-11776