Here are
28 public repositories
matching this topic...
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
Damn Vulnerable NodeJS Application
Updated
Mar 27, 2024
SCSS
Intentionally Vulnerable Serverless Functions to understand the specifics of Serverless Security Vulnerabilities
Updated
Dec 8, 2022
Python
A simple PHP application to learn SQL Injection detection and exploitation techniques.
Capture the flag challenges
AzureGenerat0r, a tool for automated generation and configuration of test environments in Microsoft Azure
Updated
Dec 8, 2022
Jinja
Simple Spring/Java web application for Fortify demonstrations
Sample Java source code containing vulnerabilities to illustrate Fortify usage
Updated
Jun 14, 2024
Java
An insecure React Native mobile application for use in Micro Focus demonstrations
Updated
Jun 14, 2024
JavaScript
Insecure Web Application - Java version
Updated
Nov 27, 2024
Java
Updated
Jun 27, 2019
Java
Insecure Web Application - .NET version
WebGoat is a deliberately insecure application
Updated
Oct 4, 2023
JavaScript
An insecure NodeJS/Express web application for use in Debricked demonstrations
Demo project with open source obstacles
Web and mobile application security training platform
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Updated
Jun 14, 2024
TypeScript
Repository for code, PoCs and others for "Security development for Muggles"
Updated
Nov 17, 2023
Python
A very silly vulnerable application to review your knowledge about basics of cybersecurity.
Updated
Apr 13, 2025
HTML
An insecure microservices demo application.
Updated
Mar 26, 2025
TypeScript
Improve this page
Add a description, image, and links to the
vulnerable-apps
topic page so that developers can more easily learn about it.
Curate this topic
Add this topic to your repo
To associate your repository with the
vulnerable-apps
topic, visit your repo's landing page and select "manage topics."
Learn more
You can’t perform that action at this time.