OWASP/Serverless-Goat external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

OWASP/Serverless-Goat

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OWASP/Serverless-Goat)

Close

OWASP / Serverless-GoatView on GitHubMore

• External links
• Readme badge

OWASP ServerlessGoat: a serverless application demonstrating common serverless security flaws

☆329Jul 30, 2024Updated last year

Alternatives and similar repositories for Serverless-Goat

Users that are interested in Serverless-Goat are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• OWASP / Serverless-Top-10-Project

  View on GitHub
  OWASP Serverless Top 10
  ☆217Jul 6, 2021Updated 4 years ago
• OWASP / DVSA

  View on GitHub
  a Damn Vulnerable Serverless Application
  ☆546Sep 12, 2023Updated 2 years ago
• OWASP / OWASPWebGoatPHP

  View on GitHub
  A deliberately vulnerable web application for learning web application security.
  ☆153Apr 28, 2025Updated last year
• m6a-UdS / dvca

  View on GitHub
  Damn Vulnerable Cloud Application
  ☆211Sep 12, 2018Updated 7 years ago
• torque59 / AWS-Vulnerable-Lambda

  View on GitHub
  An AWS Lambda vulnerable application written in flask.
  ☆49Oct 9, 2017Updated 8 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• RhinoSecurityLabs / cloudgoat

  View on GitHub
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆3,625Apr 28, 2026Updated last month
• ksoclabs / kube-goat

  View on GitHub
  A deliberately vulnerable Kubernetes cluster
  ☆133Dec 15, 2023Updated 2 years ago
• joshlarsen / aws-recon

  View on GitHub
  Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
  ☆556Jul 13, 2025Updated 10 months ago
• sonofagl1tch / AWSDetonationLab

  View on GitHub
  This script is used to generate some basic detections of the aws security services
  ☆73Feb 21, 2022Updated 4 years ago
• nccgroup / sadcloud

  View on GitHub
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆775Oct 14, 2023Updated 2 years ago
• BishopFox / iam-vulnerable

  View on GitHub
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆573Mar 12, 2026Updated 2 months ago
• wickett / lambhack

  View on GitHub
  A very vulnerable serverless application in AWS Lambda
  ☆99Oct 7, 2019Updated 6 years ago
• nccgroup / ScoutSuite

  View on GitHub
  Multi-Cloud Security Auditing Tool
  ☆7,683Sep 23, 2025Updated 8 months ago
• RhinoSecurityLabs / pacu

  View on GitHub
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆5,217May 19, 2026Updated 3 weeks ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• pumasecurity / serverless-prey

  View on GitHub
  Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
  ☆248Mar 27, 2026Updated 2 months ago
• OWASP / iGoat-Swift

  View on GitHub
  OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
  ☆452Dec 29, 2025Updated 5 months ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows

  View on GitHub
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆80Apr 4, 2019Updated 7 years ago
• gravitational / cve-2018-1002105

  View on GitHub
  Test utility for cve-2018-1002105
  ☆192Dec 13, 2018Updated 7 years ago
• OWASP / NodeGoat

  View on GitHub
  The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Nod…
  ☆2,046Jun 15, 2024Updated last year
• netscylla / JWT_Hacking

  View on GitHub
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆60Feb 2, 2019Updated 7 years ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,560Aug 2, 2024Updated last year
• pear / Crypt_RSA

  View on GitHub
  ☆11Oct 3, 2014Updated 11 years ago
• ine-labs / AWSGoat

  View on GitHub
  AWSGoat : A Damn Vulnerable AWS Infrastructure
  ☆2,021May 20, 2025Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• dagrz / aws_pwn

  View on GitHub
  A collection of AWS penetration testing junk
  ☆1,224Aug 30, 2023Updated 2 years ago
• Voulnet / barq

  View on GitHub
  barq: The AWS Cloud Post Exploitation framework!
  ☆388Nov 19, 2022Updated 3 years ago
• secvulture / dvta

  View on GitHub
  Damn Vulnerable Thick Client App
  ☆155May 27, 2026Updated 2 weeks ago
• we45 / DVFaaS-Damn-Vulnerable-Functions-as-a-Service

  View on GitHub
  Intentionally Vulnerable Serverless Functions to understand the specifics of Serverless Security Vulnerabilities
  ☆136Dec 8, 2022Updated 3 years ago
• ine-labs / AzureGoat

  View on GitHub
  AzureGoat : A Damn Vulnerable Azure Infrastructure
  ☆940Oct 30, 2024Updated last year
• appsecco / attacking-cloudgoat2

  View on GitHub
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆136Apr 28, 2020Updated 6 years ago
• OWASP / glue

  View on GitHub
  Application Security Automation
  ☆526Sep 5, 2023Updated 2 years ago
• OWASP / OWASP-VWAD

  View on GitHub
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆883Apr 13, 2026Updated last month
• aws-samples / cybersecurity-genai

  View on GitHub
  ☆20Nov 21, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• VV1LD / DumpFile405

  View on GitHub
  File Decrypter for the PS4 version 4.05
  ☆16Jan 5, 2018Updated 8 years ago
• toniblyx / my-arsenal-of-aws-security-tools

  View on GitHub
  List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
  ☆9,457Apr 17, 2026Updated last month
• andresriancho / jwt-fuzzer

  View on GitHub
  JWT fuzzer
  ☆107Jul 24, 2018Updated 7 years ago
• ProPuke / photon

  View on GitHub
  The fastest way to build beautiful Electron apps using simple HTML and CSS
  ☆10Jul 22, 2017Updated 8 years ago
• RhinoSecurityLabs / Security-Research

  View on GitHub
  Exploits written by the Rhino Security Labs team
  ☆1,101Jan 23, 2021Updated 5 years ago
• madhuakula / kubernetes-goat

  View on GitHub
  Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…
  ☆5,672Apr 16, 2026Updated last month
• step-security / github-actions-goat

  View on GitHub
  GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment
  ☆508Jun 27, 2025Updated 11 months ago