/Vulnerable_Python_Apps

Intentionally vulnerable Python web apps for hacking POCs

Primary LanguagePythonGNU General Public License v3.0GPL-3.0

Intentionaly vulnerable Python Web App Code: POCs

  • SQL Injection
  • Cross Site Scripting
  • Server-Side Request Forgery
  • Command Injection
  • Supply chain attacks: Flawed Frameworks and malicious pip
  • Python Security Tips
  • Insecure Deserialization

Instructions for use:

https://www.jetbrains.com/help/pycharm/creating-flask-project.html

  • source env/bin/activate
  • pip install flask
  • python -c "import flask; print(flask.version)"
  • export FLASK_APP=main
  • export FLASK_ENV=development
  • Collab and recomendations, always welcome.