vulnerable

There are 135 repositories under vulnerable topic.

juice-shop/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Language:TypeScript10.6k 162 82611.4k
vavkamil/awesome-vulnerable-apps
Awesome Vulnerable Applications
1k 22 2164
kaiiyer/awesome-vulnerable
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
998 12 7158
yeswehack/vulnerable-code-snippets
Twitter vulnerable snippets
Language:PHP955 28 5151
OWASP/OWASP-VWAD
:warning: This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
872 60 0222
appsecco/dvna
Damn Vulnerable NodeJS Application
Language:SCSS712 26 6714
kagurazakasanae/Mhyprot2DrvControl
A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.
Language:C#344 7 585
t0thkr1s/allsafe
Intentionally vulnerable Android application.
Language:Java221 5 273
abhi-r3v0/EVABS
An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.
Language:CMake219 6 345
opsxcq/docker-vulnerable-dvwa
Damn Vulnerable Web Application Docker container
Language:PHP212 5 13223
takito1812/web-hacking-playground
Web application with vulnerabilities found in real cases, both in pentests and in Bug Bounty programs.
Language:Python162 4 234
NeuraLegion/brokencrystals
A Broken Application - Very Vulnerable!
Language:TypeScript132 13 18211
t0thkr1s/frida
Frida scripts for mobile application dynamic-analysis.
Language:Python107 3 631
davevs/dvxte
Damn Vulnerable eXtensive Training Environment
Language:Dockerfile102 8 4138
fportantier/vulpy
Vulnerable Python Application To Learn Secure Development
Language:Python100 4 3418
Warxim/vucsa
Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
Language:Java96 7 128
DamnVulnerableCryptoApp/DamnVulnerableCryptoApp
An app with really insecure crypto. To be used to see/test/exploit weak cryptographic implementations as well as to learn a little bit more about crypto, without the need to dive deep into the math behind it
Language:TypeScript86 9 4523
mddanish/Vulnerable-OTP-Application
Vulnerable OTP/2FA Application written in PHP using Google Authenticator
Language:PHP83 8 032
cyllective/oauth-labs
oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning
Language:Go593
opsxcq/exploit-CVE-2016-6515
OpenSSH remote DOS exploit and vulnerable container
Language:JavaScript53 4 030
find-sec-bugs/juliet-test-suite
:microscope: A collection of test cases in the Java language. It contains examples for 112 different CWEs.
Language:Java52 2 070
tristanlatr/WPWatcher
Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found.
Language:Python46 4 4318
find-sec-bugs/find-sec-bugs-demos
Repository to showcase various configuration recipes with various technologies
Language:HTML35 3 142
Aif4thah/VulnerableLightApp
Vulnerable API for educational purposes
Language:C#32 2 041
MobSF/MobSF-Related-Materials
MobSF related Presentations, Slides and Others.
Language:Java32 5 121
fabaff/fsl-test-bench
FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching security testing methodologies, testing tools, learning, and playing.
Language:Jinja29 5 011
arall/vulnerabilities
Examples of different vulnerabilities, in a variety of languages, shapes and sizes.
Language:HTML27 2 016
ins1gn1a/VulnServer-Linux
Intentionally vulnerable Linux application for buffer overflow and RCE development practice
Language:C27 2 04
SecuraBV/brokenbydesign-azure
A broken-by-design Azure environment to practice and train security skills in the cloud domain.
Language:Shell26 3 16
hackingyseguridad/nmap
Scripts de nmap , para detectar vulnerabilidades
Language:Lua25 4 17
opsxcq/exploit-CVE-2016-7434
NTPD remote DOS exploit and vulnerable container
Language:C23 3 015
sectool/Python-Nikto-Vulnerability-Report-Tool
Nikto Vulnerability Report Tool 🌌
Language:Python22 1 012
codingo/cracknet
A .net Crackme Challenge made for the SecTalks Brisbane 2017 Capture the Flag Event. Writeup/solution included.
Language:C#20 10 012
stypr/vulnerable-nodejs-express-mysql
Example of a vulnerable NodeJS+Express+MySQL service
Language:JavaScript20 2 012
araavp/instacart-delivery-slot-finder
Mac Script that notifies you once a delivery slot in available on Instacart
18 3 31
sec4you/VulnLabs
docker-compose bringing up multiple vulnerable applications inside containers.
18 2 02

vulnerable

juice-shop/juice-shop

vavkamil/awesome-vulnerable-apps

kaiiyer/awesome-vulnerable

yeswehack/vulnerable-code-snippets

OWASP/OWASP-VWAD

appsecco/dvna

kagurazakasanae/Mhyprot2DrvControl

t0thkr1s/allsafe

abhi-r3v0/EVABS

opsxcq/docker-vulnerable-dvwa

takito1812/web-hacking-playground

NeuraLegion/brokencrystals

t0thkr1s/frida

davevs/dvxte

fportantier/vulpy

Warxim/vucsa

DamnVulnerableCryptoApp/DamnVulnerableCryptoApp

mddanish/Vulnerable-OTP-Application

cyllective/oauth-labs

opsxcq/exploit-CVE-2016-6515

find-sec-bugs/juliet-test-suite

tristanlatr/WPWatcher

find-sec-bugs/find-sec-bugs-demos

Aif4thah/VulnerableLightApp

MobSF/MobSF-Related-Materials

fabaff/fsl-test-bench

arall/vulnerabilities

ins1gn1a/VulnServer-Linux

SecuraBV/brokenbydesign-azure

hackingyseguridad/nmap

opsxcq/exploit-CVE-2016-7434

sectool/Python-Nikto-Vulnerability-Report-Tool

codingo/cracknet

stypr/vulnerable-nodejs-express-mysql

araavp/instacart-delivery-slot-finder

sec4you/VulnLabs