Daniel Serbu's CyberSecurity Blog

Ctrlk

🔧Welcome
💾Writeups
DevSecOps
OSINT

Powered by GitBook

On this page

Penetration Testing

Web App Security Training

OWASP Juice ShopTryHackMe

OWASP Mutillidae IITryHackMe

WebGOATTryHackMe

Vulnerable Web Applications you can spin on your localhost

GitHub - API-Security/APISandbox: Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.GitHub

GitHub - OWASP/crAPI: completely ridiculous API (crAPI)GitHub

GitHub - dolevf/Damn-Vulnerable-GraphQL-Application: Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.GitHub

GitHub - juice-shop/juice-shop: OWASP Juice Shop: Probably the most modern and sophisticated insecure web applicationGitHub

GitHub - digininja/DVWA: Damn Vulnerable Web Application (DVWA)GitHub

GitHub - roottusk/vapi: vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.GitHub

GitHub - s4n7h0/xvwa: XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.GitHub

bWAPP, a buggy web application!www.itsecgames.com

GitHub - moeinfatehi/xss_vulnerability_challenges: this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.GitHub

GitHub - WebGoat/WebGoat: WebGoat is a deliberately insecure applicationGitHub

GitHub - OWASP/railsgoat: A vulnerable version of Rails that follows the OWASP Top 10GitHub

GitHub - webpwnized/mutillidae: OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.GitHub

https://brutelogic.com.br/knoxss.htmlbrutelogic.com.br

GitHub - OWASP/NodeGoat: The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.GitHub

GitHub - OWASP/SecurityShepherd: Web and mobile application security training platformGitHub

GitHub - Audi-1/sqli-labs: SQLI labs to test error based, Blind boolean based, Time based.GitHub

Last updated 10 months ago