Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/ronin-rb/vuln-apps

A collection of simple vulnerable web apps for testing vulnerability scanners or educational purposes.
https://github.com/ronin-rb/vuln-apps

docker examples hacktoberfest help-wanted infosec jsp php vulnerabilities web-vulnerabilities

Last synced: about 1 month ago
JSON representation

A collection of simple vulnerable web apps for testing vulnerability scanners or educational purposes.

Awesome Lists containing this project

README 

          
# vuln-apps



## Description



A collection of simple vulnerable web apps for testing vulnerability scanners or

educational purposes.



## Apps



* `cmdi/`

  * [php/](cmdi/php) - A PHP app demonstrating various types of Command

    Injection.

* `lfi/`

  * [php/](lfi/php) - A PHP app demonstrating various types of Local File

    Inclusion (LFI).

* `rfi/`

  * [php/](rfi/php) - A PHP app demonstrating Remote File Inclusion (RFI).

  * [jsp/](rfi/jsp) - A JSP/Tomcat app demonstrating Remote File Inclusion

    (RFI).

* `sqli/`

  * [php/](sqli/php) - A PHP app demonstrating various types of SQL injections

    (SQLi).

* `open_redirect/`

  * [php/](open_redirect/php) - A PHP app demonstrating Open Redirect

    vulnerabilities.



## Contributing



### New Apps



* Must exist within a directory.

* Must contain a `Dockerfile` to build the app as a docker image.

* Must contain a `docker-compose.yml` file for quickly starting up the docker

  image.

* Must contain a `Makefile` for building the docker image and running either

  the app or the docker image.

* Must contain an `index.html` page which describes the vulnerability and links

  to the vulnerable webpage.

* Must contain a `README.md` file containing basic instructions on how to run

  and view the web app.