vulnerable-apps

DVWA

Damn Vulnerable Web Application (DVWA)

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Vulnerable-JWT

Collection of vulnerable APIs/apps to test JWT attacks

VulnerableCoreApp

Mirror of https://github.com/zsusac/VulnerableCoreApp

dvcsharp-api

Damn Vulnerable C# Application (API)

intentionally-vulnerable-golang-project

Vulnerable Golang App by Sonatype Nexus

javaspringvulny

javaspringvulny - a Spring Boot web application built wrong on purpose

vuln_node_express

dvcsa

Damn Vulnerable C# (Asp.Net core) application

grpc-web-playground

The main goal of this repo is to learn about the gRPC communication patterns and hunt for vulnerabilities in the gRPC-Web app to improve your hunting skills

pygoat

intentionally vuln web Application Security in django

railsgoat-cicd-lab

CI/CD lab demonstrating static and dynamic security analysis of RailsGoat app

Remediation-Demo

Tiredful-API

An intentionally designed broken web application based on REST API.

Tiredful-API-py3-beta

Python 3 compatible repo of Tiredful API

VAmPI

Vulnerable REST API with OWASP top 10 vulnerabilities for APIs

VulnerableApp

OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.

VulnerableLightApp

Vulnerable API for educational purposes

WebGoat

WebGoat is a deliberately insecure application

xss-fastapi

Recreation of https://xss-game.appspot.com/

ypreyAPIPython

yrpreyASPC

yrpreyASPCPlus

yrpreyC

yrpreyCPlus

yrpreyLibrary

YrpreyPathTraversal

yrpreyPHP

The YrpreyPHP framework is a framework written in PHP and Bootstrap with vulnerabilities in CSRF, SQL Injection, Remote Command Execution and others.

yrpreyTasksNodeJS

yrpreyTasksPython