Ali-Razmjoo's Stars
digininja/DVWA
Damn Vulnerable Web Application (DVWA)
madhuakula/kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
OWASP/wrongsecrets
Vulnerable app with examples showing how to not use secrets
bridgecrewio/terragoat
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
OWASP/OWASP-VWAD
The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
incredibleindishell/SSRF_Vulnerable_Lab
This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
OWASP/DVSA
a Damn Vulnerable Serverless Application
BishopFox/iam-vulnerable
Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
OWASP/Vulnerable-Web-Application
OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber
incredibleindishell/CORS-vulnerable-Lab
Sample vulnerable code and its exploit code
incredibleindishell/sqlite-lab
This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/
OWASP/OWASPWebGoatPHP
A deliberately vulnerable web application for learning web application security.
tenable/KaiMonkey
KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
bridgecrewio/cfngoat
Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
ShiftLeftSecurity/tarpit-java
Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
bridgecrewio/kustomizegoat
Vulnerable Kustomize Kubernetes templates for training and education
SasanLabs/VulnerableApp-facade
VulnerableApp-facade is probably most modern lightweight distributed farm of Vulnerable Applications built for handling wide range of vulnerabilities across tech stacks.
bridgecrewio/cdkgoat
CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
OWASP/vulnerable-container-hub
VULCONHUB provides access to files to build your own hands-on vulnerable container image to learn and practice security
ShiftLeftSecurity/flask-webgoat
flask-webgoat is a deliberately-vulnerable application written with the Flask web framework.
SasanLabs/VulnerableApp-php
Vulnerable Application written in PHP
SasanLabs/VulnerableApp-jsp
Vulnerable Application specifically containing vulnerabilities related to jsp.
bridgecrewio/bicepgoat
BicepGoat is Bridgecrew's "Vulnerable by Design" Bicep and ARM repository. BicepGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
OWASP/Vicnum-BasicCTF
A rather basic (intentionally) vulnerable Web application written in PHP, part of the OWASP Vicnum Project
guyeisenkot/supplygoat
"Vulnerable by Design" supply chain is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
snyk/scala-woof
An intentionally vulnerable application, for testing
FiroSolutions/vuln_rust
This a vulnerable Rust repo - DO NOT USE
jaroslawZawila/vulnerable-play
maltiyadav/scala-vulnerable-code
ShiftLeftSecurity/zipdu
zipdu is a webservice implementation vulnerable to zip bombs and directory traversals. Written in multiple different languages