GithubHelp home page GithubHelp logo

isabella232 / vulnerable-web-application Goto Github PK

View Code? Open in Web Editor NEW

This project forked from owasp/vulnerable-web-application

0.0 0.0 0.0 1.02 MB

OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber

Home Page: https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Application

License: GNU General Public License v3.0

PHP 78.49% HTML 18.99% Hack 2.02% CSS 0.50%

vulnerable-web-application's Introduction

Vulnerable Web Application

VulnWeb

What is Vulnerable-Web-Application

Vulnerable-Web-Application is a website that is prepared for people who are interested in web penetration and who want to have information about this subject or to be working. In fact, the website is quite simple to install and use.

Vulnerable-Web-Application categorically includes Command Execution, File Inclusion, File Upload, SQL and XSS. For database-requiring categories, it creates a database under localhost with one button during setup. In case of corrupted or changed databases, you can create a database again.

Installation Guide

If you want to run this tool, first of all you need to download web server solution like "xampp"- you can download xampp from Xampp. After your installation;

For Windows you need to copy the files into the xampp/htdocs folder.

For Mac Os you need to install mampp and copy the files into the mamp/htdocs folder. Mampp

For Linux after download our files first you need to open apache server and copy the files to /var/www/html

Docker Container

You can also run the Vulnerable Web Application in Docker with the folowing command:

docker run -it --name vuln_app -p 9991:80 santosomar/vuln_app:latest /bin/bash

Note: You can change the port 9991 to any port you desire depending your implementation.

Other Configurations:

The php.ini file should be altered. You can find the location of your php.ini file under the folder which php is installed.

  • allow_url_include = on - Allows for Remote File Inclusion
  • allow_url_fopen = on - Allows for Remote File Inclusion
  • safe_mode = off - (If PHP <= v5.4) Allows for SQL Injection
  • magic_quotes_gpc = off - (If PHP <= v5.4) Allows for SQL Injection

Application Setup

  • After editing the previous configuration, open the Xampp Control Panel and start Apache,MySQL.
  • Your MySQL credentials must stay the default credentials (e.g., username:root <-> password:"")
  • Open up the index.php file in the Vulnerable Web Application directory. Follow the directions and create database.

Note: You can reset the database at any time, if needed or if you run into any problems. Once the database is ready, you can go to homepage and start hacking.

License

The contents of this repository are licensed under the GNU General Public License v3.0.

Version

1.0.0

vulnerable-web-application's People

Contributors

fatihhcelik avatar hummingbirdscyber avatar ofsenyayla avatar oguztozkoparan avatar ramazanemreerkan avatar santosomar avatar ufuksungu avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.