intentionally vuln web Application Security in django
☆309Mar 3, 2026Updated this week
Alternatives and similar repositories for pygoat
Users that are interested in pygoat are comparing it to the libraries listed below
Sorting:
- Damn Vulnerable Python Web App☆185May 21, 2024Updated last year
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆1,174Nov 25, 2024Updated last year
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆502Feb 28, 2026Updated last week
- ☆10Mar 25, 2025Updated 11 months ago
- Vulnerable API☆418Mar 4, 2023Updated 3 years ago
- An example of a mis-configured Rails application release under MIT license.☆21Jan 19, 2023Updated 3 years ago
- A tools for JavaScript Recon☆24Jul 25, 2020Updated 5 years ago
- An intentionally vulnerable django app, to help django developers learn security testing☆46Aug 15, 2023Updated 2 years ago
- Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.☆13Aug 4, 2025Updated 7 months ago
- Active DIrectory Lab for Pentesting Practice☆24Aug 9, 2022Updated 3 years ago
- OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.☆366Updated this week
- Vulnerable app with examples showing how to not use secrets☆1,397Mar 2, 2026Updated last week
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆884Mar 2, 2026Updated last week
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆328Mar 27, 2024Updated last year
- Damn Vulnerable Java (EE) Application☆145Jan 23, 2024Updated 2 years ago
- all manner of wordlists☆24Jan 19, 2022Updated 4 years ago
- An app with really insecure crypto. To be used to see/test/exploit weak cryptographic implementations as well as to learn a little bit mo…☆85Mar 3, 2023Updated 3 years ago
- VulnerableApp-facade is probably most modern lightweight distributed farm of Vulnerable Applications built for handling wide range of vul…☆50Feb 19, 2026Updated 2 weeks ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Dec 4, 2021Updated 4 years ago
- Collection of fuzzing payloads and corpus from all around added as sub modules☆15May 17, 2025Updated 9 months ago
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.☆1,329Jan 10, 2025Updated last year
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,928Updated this week
- Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code☆66Sep 18, 2021Updated 4 years ago
- completely ridiculous API (crAPI)☆1,442Updated this week
- Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practis…☆1,677May 24, 2025Updated 9 months ago
- Purposely-vulnerable Python functions☆17Oct 8, 2025Updated 5 months ago
- A vulnerable Play application for attackers.☆18Updated this week
- Vulnerable Python Application To Learn Secure Development☆127May 31, 2024Updated last year
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆762Aug 21, 2023Updated 2 years ago
- ☆74Nov 5, 2018Updated 7 years ago
- Performing automated scan using Burp Suite Pro & Vmware Burp Rest API☆52Sep 30, 2022Updated 3 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆76Sep 2, 2020Updated 5 years ago
- Vulnerable FastAPI in reference to Opensource Web Application Security Project (OWASP) TOP 10: 2021☆16Jan 3, 2022Updated 4 years ago
- Scripts and misc. stuff related to the PortSwigger Web Academy☆17Feb 6, 2022Updated 4 years ago
- A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.☆1,263Jan 11, 2026Updated last month
- Damn Vulnerable NodeJS Application☆764Mar 27, 2024Updated last year
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆133Dec 22, 2022Updated 3 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆58Jul 26, 2020Updated 5 years ago
- Heuristic Vulnerable Parameter Scanner☆600Jan 8, 2024Updated 2 years ago