beebox-0.0.3

bWAPP, or a buggy web application, is a free and open source deliberately insecure web application. It helps security enthusiasts, developers and students to discover and to prevent web vulnerabilities. bWAPP prepares one to conduct successful penetration testing and ethical hacking projects.

altoroj-0.0.2

AltoroJ is a sample banking J2EE web application. AltoroJ uses standard Java & JSP functionality without relying on any additional frameworks. AltoroJ uses Apache Derby as its SQL database that is automatically initialized the first time you log into AltoroJ via its web interface.

python-xxe-1.0.1

App built with python that has a vulnerability allowing attackers to exploit XML processing flaws for malicious purposes.

php-xxe-1.0.1

Web application built with PHP that has a vulnerability allowing attackers to exploit XML processing flaws for malicious purposes.

java-xxe-1.0.1

Security vulnerability in Java applications that occurs when an attacker can manipulate the processing of XML input to include references to external entities.

dvwp-0.0.6

Damn Vulnerable WordPress

altoroj-0.0.1

AltoroJ is a sample banking J2EE web application. AltoroJ uses standard Java & JSP functionality without relying on any additional frameworks. AltoroJ uses Apache Derby as its SQL database that is automatically initialized the first time you log into AltoroJ via its web interface.

nexploit-benchmarking-target-1.0.0

A Helm chart for Kubernetes

vulhub-tomcat-0.0.1

vulhub-tomcat app. https://github.com/vulhub/vulhub/tree/master/tomcat/CVE-2017-12615

vulhub-appweb-0.0.1

vulhub-appweb app. https://github.com/vulhub/vulhub/tree/master/appweb/CVE-2018-8715