Difference between revisions of "OWASP Vulnerable Web Applications Directory Project"

From OWASP
Jump to: navigation, search
Line 138: Line 138:
 
Please add any new apps in alphabetic order, correct mistakes or just comment on this page if you dont have write access to this wiki.
 
Please add any new apps in alphabetic order, correct mistakes or just comment on this page if you dont have write access to this wiki.
  
= Offline apps =
+
= Off-Line apps =
  
 
Vulnerable applications that have to be downloaded and used locally:
 
Vulnerable applications that have to be downloaded and used locally:

Revision as of 03:44, 16 October 2013

[edit]

OWASP Project Header.jpg

OWASP Vulnerable Web Applications Directory Project

OWASP Vulnerable Web Applications Directory Project is a comprehensive and well maintained registry of all known vulnerable web applications currently available.

Introduction

Select from the above tabs to view all of the:

  • On-Line applications
  • Off-Line applications
  • Virtual Machines


Description

Do we need anything more here?


Licensing

OWASP Vulnerable Web Applications Directory Projects is free to use. It is licensed under the Apache 2.0 License, so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially.

What is XXX?

OWASP XXX provides:

  • xxx
  • xxx


Presentation

Link to presentation



Project Leaders


Related Projects


Quick Download

  • Link to page/download


News and Events

  • [20 Nov 2013] News 2
  • [30 Sep 2013] News 1


In Print

N/A


Classifications

Owasp-incubator-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files DOC.jpg

App Name / Link Author Comments
Acublog Acunetix
Acuforum Acunetix
Altoro Mutual IBM
Crack Me Bank Cenzic
Enigma Group Enigma Group
Gruyere Google
Hacker Challenge PCTechtips
hackxor First 2 levels online, rest offline
Zero Bank

Please add any new apps in alphabetic order, correct mistakes or just comment on this page if you dont have write access to this wiki.

Vulnerable applications that have to be downloaded and used locally:

App Name / Link Technology Author Comments
BadStore Perl(CGI)
Bodgeit Store JSP Simon Bennetts Aimed at beginners
Butterfly Security Project Last updated in 2008
bWAPP
Damn Vulnerable Web Application PHP/MySQL RandomStorm
Hackademic PHP OWASP
Hacme Bank - Android McAfee / Foundstone
Hacme Bank ASP.NET (2.0) McAfee / Foundstone
Hacme Books J2EE McAfee / Foundstone
Hacme Casino McAfee / Foundstone
Hacme Shipping McAfee / Foundstone
Hacme Travel McAfee / Foundstone
hackxor First 2 levels online, rest offline
LampSecurity PHP
Mutillidae PHP
SecuriBench Java Stanford
SecuriBench Micro Java Stanford
Vicnum PHP/Perl OWASP
Vulnerable Web App Exploit.co.il
WebGoat Java OWASP
WebGoat.NET ASP.NET OWASP

Please add any new apps in alphabetic order, correct mistakes or just comment on this page if you dont have write access to this wiki.


The following apps are quite old and appear not to be maintained - as such they are probably less useful.

App Name / Link Technology Author Comments
WebMaven/Buggy Bank
InsecureWebApp Java OWASP
SiteGenerator ASP.NET OWASP


VMs which contain multiple vulnerable applications:

App Name / Link Author Comments
Moth Bonsai
Broken Web Applications OWASP

Please add any new apps in alphabetic order, correct mistakes or just comment on this page if you dont have write access to this wiki.



Volunteers

XXX is developed by a worldwide team of volunteers. The primary contributors to date have been:

  • xxx
  • xxx

Others

  • xxx
  • xxx

As of October 15, 2013, the priorities are:

  • Document all known Vulnerable Web Applications
  • Publicise
  • Keep up to date
  • Please add a more robust/descriptive roadmap.

Involvement in the development and promotion of the OWASP Vulnerable Web Applications Directory Project is actively encouraged! You do not have to be a security expert in order to contribute. Some of the ways you can help:

  • xxx
  • xxx


PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP Vulnerable Web Applications Directory Project
Purpose: The OWASP Vulnerable Web Applications Directory is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
License: Apache 2.0 License (fewest restrictions, even allowing proprietary modifications and proprietary forks of your project)
who is working on this project?
Project Leader(s):
  • Raul Siles @
  • Simon Bennetts @
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: Not Yet Created
Key Contacts
  • Contact Raul Siles @ to contribute to this project
  • Contact Raul Siles @ to review or sponsor this project
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
Not Yet Published
last reviewed release
Not Yet Reviewed


other releases