Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/alexwaibel/vulnerableblazorapp
https://github.com/alexwaibel/vulnerableblazorapp
Last synced: 28 days ago
JSON representation
- Host: GitHub
- URL: https://github.com/alexwaibel/vulnerableblazorapp
- Owner: alexwaibel
- License: mit
- Created: 2023-12-07T01:40:22.000Z (11 months ago)
- Default Branch: master
- Last Pushed: 2023-12-23T08:36:16.000Z (11 months ago)
- Last Synced: 2023-12-23T09:55:29.847Z (11 months ago)
- Language: HTML
- Size: 377 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
# Vulnerable Blazor App
## About
This is an intentionally vulnerable webapp written using [Blazor](https://dotnet.microsoft.com/en-us/apps/aspnet/web-apps/blazor), Microsoft's latest .NET web framework. It is intended to provide code examples to go alongside the concepts in [PortSwigger Web Academy](https://portswigger.net/web-security/dashboard). See [the wiki](https://github.com/alexwaibel/VulnerableBlazorApp/wiki) for a write-up.
WARNING: This web app is intentionally riddled with vulnerabilities. DO NOT upload it to a host facing the public internet. For best results, run this in a virtual machine
## Getting Started
To run the application, follow the below instructions.
### Prerequisites
- [.NET Core 8.0 SDK](https://dotnet.microsoft.com/en-us/download) installed
### Running Application
- Clone this repo and cd into the root directory
```bash
cd VulnerableBlazorApp
```
- Install dotnet entity framework
```bash
dotnet tool install --global dotnet-ef
```
- Run the database migrations
```bash
dotnet ef database update
```
- Start the application
```bash
dotnet watch
```
- In the terminal output, look for the line `Now listening on: http://localhost:{port}` where the `{port}` will be a randomly selected port
- Navigate to the above address in your browser of choice