A deliberately vulnerable web application for learning web application security.
☆151Apr 28, 2025Updated last year
Alternatives and similar repositories for OWASPWebGoatPHP
Users that are interested in OWASPWebGoatPHP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OWASP GoatDroid is a fully functional and self-contained training environment for educating developers and testers on Android security. G…☆27Sep 25, 2012Updated 13 years ago
- OWASP WebGoat.NET☆73Aug 20, 2015Updated 10 years ago
- OWASP Findings Format☆19Mar 4, 2021Updated 5 years ago
- OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS☆451Dec 29, 2025Updated 4 months ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆882Apr 13, 2026Updated 2 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆12Apr 22, 2018Updated 8 years ago
- Journey to conquer the OSCP!☆13Apr 18, 2019Updated 7 years ago
- Simple mind maps for IoT security attack surfaces and methodologies☆17Aug 12, 2019Updated 6 years ago
- OWASP iGoat - A Learning Tool for iOS App Pentesting and Security by Swaroop Yermalkar☆457Jan 5, 2023Updated 3 years ago
- Securibench Micro is a benchmark for static analysis tools for security.☆27Jul 26, 2018Updated 7 years ago
- GitHub Advanced Security C# Demo Application☆17Aug 8, 2024Updated last year
- OWASP WebGoat.NET☆251Dec 16, 2023Updated 2 years ago
- *This project is no longer maintained* OWASP GoatDroid is a fully functional and self-contained training environment for educating develo…☆254Jul 29, 2014Updated 11 years ago
- This is a defunct code base. The project is located at: https://github.com/WebGoat☆54Jul 20, 2016Updated 9 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Priv8 Tools Offensive Security WordPress_AutoExploiter☆28Apr 17, 2022Updated 4 years ago
- A vulnerable LDAP based web app written in Golang☆83Oct 31, 2023Updated 2 years ago
- A honeypot that can be used to observe traffic directed at home routers.☆21Nov 14, 2018Updated 7 years ago
- ☆11Mar 19, 2022Updated 4 years ago
- Icegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin <= 5.7.14 - Unauthenticated SQL Injection☆21Sep 15, 2024Updated last year
- Proof of concept that uses cosign and GitHub's in built OIDC for actions to sign container images, providing a proof that what is in the …☆14Jan 31, 2023Updated 3 years ago
- flask-webgoat is a deliberately-vulnerable application written with the Flask web framework.☆19Sep 5, 2025Updated 7 months ago
- LAPSE+ is a security scanner, based on the white box analysis of code for detecting vulnerabilities in Java EE Applications.☆27Feb 2, 2018Updated 8 years ago
- Accepts a domain name and queries multiple sources to return subdomains. Includes option to scan the returned subdomains to check connect…☆14Aug 9, 2019Updated 6 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- OWASP Serverless Top 10☆217Jul 6, 2021Updated 4 years ago
- Web and mobile application security training platform☆1,439Mar 31, 2026Updated last month
- This repository holds a target infrastructure you can use for running the nimbostratus tools.☆24Mar 9, 2015Updated 11 years ago
- The OWASP Top 5 Machine Learning Risks[edit | edit source] The idea is to build the required resources which help software security comm…☆30Jun 9, 2018Updated 7 years ago
- OWASP Passfault evaluates passwords and enforces password policy in a completely different way.☆178Feb 23, 2021Updated 5 years ago
- Audits AD hashdump and looks for instances for password reuse☆12Nov 12, 2019Updated 6 years ago
- miscellaneous stuff☆21Mar 31, 2015Updated 11 years ago
- apkfram was written in order to help any mobile penetration testers to identify the Framework used to develop the Android application.☆12Oct 9, 2024Updated last year
- Penetration Testing with Kali Linux☆22Oct 18, 2019Updated 6 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Deliberately vulnerable PHP code examples for testing static analysis tools and security training, covering common vulnerabilities such a…☆12Updated this week
- Connecting WordPress with Cloudflare firewall, protect your WordPress site at DNS level. Automatically create firewall rules to block dan…☆14Aug 27, 2023Updated 2 years ago
- Handy scripts and one-liners to make life easier☆38Mar 6, 2023Updated 3 years ago
- Vulnerable Bank Web Application for Cyber Security Course☆13Dec 11, 2022Updated 3 years ago
- Vulnerable Java based Web Application☆274Jun 20, 2024Updated last year
- Fake-Out : Fake-Out is an email spoofing tool created by HackEthics138, with security measures provided by Team Illusion. Thi…☆12Aug 19, 2024Updated last year
- This is a container of web applications that work with OWASP Bug Bounty for Projects☆34Apr 28, 2025Updated last year