Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/Peco602/dvwassl

SSL-enabled Damn Vulnerable Web App (DVWA)
https://github.com/Peco602/dvwassl

docker dvwa ethical-hacking security ssl

Last synced: about 2 months ago
JSON representation

SSL-enabled Damn Vulnerable Web App (DVWA)

Host: GitHub
URL: https://github.com/Peco602/dvwassl
Owner: Peco602
License: mit
Created: 2022-10-09T19:16:58.000Z (almost 2 years ago)
Default Branch: main
Last Pushed: 2023-04-30T17:03:01.000Z (over 1 year ago)
Last Synced: 2024-04-10T05:45:16.387Z (5 months ago)
Topics: docker, dvwa, ethical-hacking, security, ssl
Language: Dockerfile
Homepage:
Size: 12.7 KB
Stars: 4
Watchers: 1
Forks: 4
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-docker - dvwassl - SSL-enabled Damn Vulnerable Web App to test Web Application Firewalls. By [@Peco602][peco602] (Container Operations / Security)

README

![Push](https://github.com/Peco602/dvwassl/actions/workflows/push.yml/badge.svg)
[![Mentioned in awesome-docker](https://awesome.re/mentioned-badge.svg)](https://github.com/veggiemonk/awesome-docker)

# SSL-enabled Damn Vulnerable Web App

Run an SSL-enabled Damn Vulnerable Web App.

*Why?*

You might want to test web attack detections over SSL.

## Build the image

```bash
docker build -t dvwassl:latest .
```

## Run the container

```bash
docker run -d -p 443:443 dvwassl:latest
```

## Custom SSL certificate and key

The image comes with pre-generated SSL certificate and key. You can also use your own or generate new ones:

```bash
openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -sha256 -days 365 -nodes
```

Then, run the container:

```bash
docker run -d -p 443:443 -v $(pwd)/cert.pem:/etc/apache2/cert.pem -v $(pwd)/key.pem:/etc/apache2/key.pem dvwassl:latest
```

## Login with default credentials

To login you can use the following credentials:

- Username: admin
- Password: password

## About DVWA

You can visit DVWA official [github repository](https://github.com/digininja/DVWA) if you want more information.

## Disclaimer

This or previous program is for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that me (opsxcq) is not liable for any damages caused by direct or indirect use of the information or functionality provided by these programs. The author or any Internet provider bears NO responsibility for content or misuse of these programs or any derivatives thereof. By using these programs you accept the fact that any damage (dataloss, system crash, system compromise, etc.) caused by the use of these programs is not opsxcq's responsibility.

## DockerHub

- [peco602/dvwassl](https://hub.docker.com/r/peco602/dvwassl)