Pinned Repositories
awesome-vulnerable
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
bwapp
an extremely buggy web app !
dvja
Damn Vulnerable Java (EE) Application
dvna
Damn Vulnerable NodeJS Application
dvpwa
Damn Vulnerable Python Web App
DVWA
Damn Vulnerable Web Application (DVWA)
ecsdemo-nodejs
Part 3 of a 4 part ECS workshop
gg_test_public_event_repo
gitguardian_poc2
gg_test_repo
gitguardian_POC
junghanlee's Repositories
junghanlee/awesome-vulnerable
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
junghanlee/Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
junghanlee/bwapp
an extremely buggy web app !
junghanlee/dvja
Damn Vulnerable Java (EE) Application
junghanlee/dvna
Damn Vulnerable NodeJS Application
junghanlee/dvpwa
Damn Vulnerable Python Web App
junghanlee/DVWA
Damn Vulnerable Web Application (DVWA)
junghanlee/ecsdemo-nodejs
Part 3 of a 4 part ECS workshop
junghanlee/gg_test_public_event_repo
gitguardian_poc2
junghanlee/gg_test_repo
gitguardian_POC
junghanlee/KaiMonkey
KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
junghanlee/kube-goat
A deliberately vulnerable Kubernetes cluster
junghanlee/oss2018
Open Security Summit 2018
junghanlee/OWASPWebGoatPHP
A deliberately vulnerable web application for learning web application security.
junghanlee/shiftleft-go-demo
junghanlee/shiftleft-java-demo
junghanlee/shiftleft-python-demo
junghanlee/shiftleft_test
junghanlee/terraform-aws-secure-baseline
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
junghanlee/terraform-examples
Simple and idiomatic examples of various Terraform functions and features.
junghanlee/terragoat
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
junghanlee/vulnado
Purposely vulnerable Java application to help lead secure coding workshops
junghanlee/vulnerability-java-samples
Sample exploits of common vulnerabilities in Java librarires
junghanlee/vulnerable-app
A sample web application using Node.js, Express and Angular that is vulnerable to common security vulnerabilities.
junghanlee/vulnerable-node
A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools
junghanlee/Vulnerable-Web-Application
OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber
junghanlee/VulnerableApp
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
junghanlee/vulpy
Vulnerable Python Application To Learn Secure Development