https://github.com/brannondorsey/application-security-workshop

Last synced: 3 months ago
JSON representation

Host: GitHub
URL: https://github.com/brannondorsey/application-security-workshop
Owner: brannondorsey
Created: 2021-03-21T20:06:37.000Z (over 4 years ago)
Default Branch: main
Last Pushed: 2021-03-27T03:57:57.000Z (over 4 years ago)
Last Synced: 2025-01-12T05:44:15.933Z (9 months ago)
Language: HTML
Size: 36.1 KB
Stars: 4
Watchers: 3
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Application Security Workshop

Explore web application vulnerabilities like XSS and server-side injection through example. This repo contains Docker runtime environments for a vulnerable web application and an attacker-controlled service meant to exploit it.

If you're looking for notes on the vulnerabilities covered in this workshop, and how to exploit them, see [WORKSHOP_NOTES.md](WORKSHOP_NOTES.md).

## Running the Demo Environment

Docker and docker-compose must be installed on your machine before continuing.

```bash
# Build and run the Docker image containers
make run

# You can now visit the vulnerable service in a web browser on http://localhost:8080

# And if you want to peruse stolen loot during the workshop, run...
make login-attacker-controlled-service
```

Read the [Makefile](Makefile) for more info.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/brannondorsey/application-security-workshop

Awesome Lists containing this project

README