Vulnerable API for educational purposes

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

A script that webs scrapes multiple webpages for known vulnerable Windows Drivers, SHA256 hashes all system drivers, looks for matching driver names and SHA256 hashes.

Purposely vulnerable Java application to help lead secure coding workshops

Awesome Vulnerable Applications

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.

FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching security testing methodologies, testing tools, learning, and playing.

A broken-by-design Azure environment to practice and train security skills in the cloud domain.

A Broken Application - Very Vulnerable!

Scripts de nmap , para detectar vulnerabilidades

Intentionally vulnerable Android application.

Frida scripts for mobile application dynamic-analysis.

Twitter vulnerable snippets

LEKIR - Vulnerable by design to help people learn about common web security, dockerized!

Damn Vulnerable NodeJS Application

Examples of different vulnerabilities, in a variety of languages, shapes and sizes.

vBank is a vulnerable bank application that demonstrates how to exploit common REST and GraphQL API vulnerabilities, such as those listed in the OWASP API Security Top 10.

Vulnerable Python Application To Learn Secure Development

Ansible playbook to install Mutillidae which is a vulnerable web app by design