____ ____ .__ __ __ ___. __
\ \ / /_ __| |/ \ / \ ____\_ |__ _____ |__|__ __
\ Y / | \ |\ \/\/ // __ \| __ \__ \ | | | |
\ /| | / |_\ /\ ___/| \_\ \/ __ \_ | | | /
\___/ |____/|____/\__/\ / \___ >___ (____ /\__| |____/
\/ \/ \/ \/\______|
VulWebaju is a script that automates to set up your pentesting environment for learning purpose. This script will help you to install common vulnerable applications.
Note: This script is only tested in Ubuntu. You can also use in multiple cloud providers(EC2,Google Compute Engine, Azure virual machines, DigitalOcean Droplets).
- DVWA
- Owasp Juice Shop
- Web goat
- Nodegoat
- Damm Vulnerable GraphQL
- Rails Goat
- OAuth 2.0 Application
- Xeelab
- DVWP
- XSSLab
- TiredAPI
- Vulnerable Nginx
- SSRF Vulnerable Lab
- Wackopicko
- 0l4bs
- Vapi
- Govwa
- WannaRace
- VulnLab
git clone https://github.com/Aju100/VulWebaju
cd VulWebaju
sudo ./install.shMake sure you have installed Docker.
sudo apt update -y
sudo apt install git
sudo apt install docker.io -y
sudo systemctl start docker
sudo systemctl enable docker
sudo curl -L "https://github.com/docker/compose/releases/download/1.29.0/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
sudo chmod +x /usr/local/bin/docker-composeYou can use also call install_requirements function via install.sh script to install all requirements.
You can also try other labs if you are interested in learning.
- Kubernetes Goat
- Vulnerable Graphql Api
- Websheep
- Vfapi
- Lets be bad guys
- DSVW
- Dvpwa
- Go test bench
- Generic University
- Cfngoat - Vulnerable Cloudformation Template
- TerraGoat
- Wrong Secrets
- VAmPI
- iGoat-Swift
- BWASP
Contributions are always welcome! Please read the contribution guidelines first.
If you need any help anywhere in the process, you can open Github issue.
This project is currently licensed under the MIT General Public License v3. i.e. we guarantee end users the freedom to run, study, share, and modify the software.
Made with ❤️ and Bash