vulnerable

There are 126 repositories under vulnerable topic.

juice-shop/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Language:TypeScript9.8k 160 8059.7k
kaiiyer/awesome-vulnerable
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
888 11 7144
vavkamil/awesome-vulnerable-apps
Awesome Vulnerable Applications
888 18 2147
yeswehack/vulnerable-code-snippets
Twitter vulnerable snippets
Language:PHP860 27 4129
OWASP/OWASP-VWAD
The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
837 61 78213
appsecco/dvna
Damn Vulnerable NodeJS Application
Language:SCSS677 26 6669
kagurazakasanae/Mhyprot2DrvControl
A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.
Language:C#336 7 585
abhi-r3v0/EVABS
An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.
Language:CMake215 6 347
opsxcq/docker-vulnerable-dvwa
Damn Vulnerable Web Application Docker container
Language:PHP202 6 13220
t0thkr1s/allsafe
Intentionally vulnerable Android application.
Language:Java194 4 266
takito1812/web-hacking-playground
Web application with vulnerabilities found in real cases, both in pentests and in Bug Bounty programs.
Language:Python159 4 234
NeuraLegion/brokencrystals
A Broken Application - Very Vulnerable!
Language:CSS116 12 19197
davevs/dvxte
Damn Vulnerable eXtensive Training Environment
Language:Dockerfile102 8 4138
t0thkr1s/frida
Frida scripts for mobile application dynamic-analysis.
Language:Python95 3 629
Warxim/vucsa
Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
Language:Java95 7 127
fportantier/vulpy
Vulnerable Python Application To Learn Secure Development
Language:Python88 4 3354
DamnVulnerableCryptoApp/DamnVulnerableCryptoApp
An app with really insecure crypto. To be used to see/test/exploit weak cryptographic implementations as well as to learn a little bit more about crypto, without the need to dive deep into the math behind it
Language:TypeScript85 9 4522
mddanish/Vulnerable-OTP-Application
Vulnerable OTP/2FA Application written in PHP using Google Authenticator
Language:PHP84 8 031
opsxcq/exploit-CVE-2016-6515
OpenSSH remote DOS exploit and vulnerable container
Language:JavaScript53 4 030
find-sec-bugs/juliet-test-suite
:microscope: A collection of test cases in the Java language. It contains examples for 112 different CWEs.
Language:Java47 2 068
tristanlatr/WPWatcher
Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found.
Language:Python46 4 4319
find-sec-bugs/find-sec-bugs-demos
Repository to showcase various configuration recipes with various technologies
Language:HTML35 3 142
MobSF/MobSF-Related-Materials
MobSF related Presentations, Slides and Others.
Language:Java29 5 121
ins1gn1a/VulnServer-Linux
Intentionally vulnerable Linux application for buffer overflow and RCE development practice
Language:C28 2 04
fabaff/fsl-test-bench
FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching security testing methodologies, testing tools, learning, and playing.
Language:Jinja27 5 011
arall/vulnerabilities
Examples of different vulnerabilities, in a variety of languages, shapes and sizes.
Language:HTML26 2 014
hackingyseguridad/nmap
Scripts de nmap , para detectar vulnerabilidades
Language:Lua25 4 17
opsxcq/exploit-CVE-2016-7434
NTPD remote DOS exploit and vulnerable container
Language:C24 3 015
SecuraBV/brokenbydesign-azure
A broken-by-design Azure environment to practice and train security skills in the cloud domain.
Language:Shell24 3 06
codingo/cracknet
A .net Crackme Challenge made for the SecTalks Brisbane 2017 Capture the Flag Event. Writeup/solution included.
Language:C#21 10 012
sectool/Python-Nikto-Vulnerability-Report-Tool
Nikto Vulnerability Report Tool 🌌
Language:Python21 1 012
Aif4thah/VulnerableLightApp
Vulnerable API for educational purposes
Language:C#18 2 011
araavp/instacart-delivery-slot-finder
Mac Script that notifies you once a delivery slot in available on Instacart
18 3 31
sec4you/VulnLabs
docker-compose bringing up multiple vulnerable applications inside containers.
18 2 02
stypr/vulnerable-nodejs-express-mysql
Example of a vulnerable NodeJS+Express+MySQL service
Language:JavaScript18 2 011
Al1ex/Alibab-Nacos-Unauthorized-Login
Alibab Nacos Unauthorized Login
13 1 02

vulnerable

juice-shop/juice-shop

kaiiyer/awesome-vulnerable

vavkamil/awesome-vulnerable-apps

yeswehack/vulnerable-code-snippets

OWASP/OWASP-VWAD

appsecco/dvna

kagurazakasanae/Mhyprot2DrvControl

abhi-r3v0/EVABS

opsxcq/docker-vulnerable-dvwa

t0thkr1s/allsafe

takito1812/web-hacking-playground

NeuraLegion/brokencrystals

davevs/dvxte

t0thkr1s/frida

Warxim/vucsa

fportantier/vulpy

DamnVulnerableCryptoApp/DamnVulnerableCryptoApp

mddanish/Vulnerable-OTP-Application

opsxcq/exploit-CVE-2016-6515

find-sec-bugs/juliet-test-suite

tristanlatr/WPWatcher

find-sec-bugs/find-sec-bugs-demos

MobSF/MobSF-Related-Materials

ins1gn1a/VulnServer-Linux

fabaff/fsl-test-bench

arall/vulnerabilities

hackingyseguridad/nmap

opsxcq/exploit-CVE-2016-7434

SecuraBV/brokenbydesign-azure

codingo/cracknet

sectool/Python-Nikto-Vulnerability-Report-Tool

Aif4thah/VulnerableLightApp

araavp/instacart-delivery-slot-finder

sec4you/VulnLabs

stypr/vulnerable-nodejs-express-mysql

Al1ex/Alibab-Nacos-Unauthorized-Login