Skip to content

Latest commit

 

History

History
64 lines (42 loc) · 3.04 KB

README.md

File metadata and controls

64 lines (42 loc) · 3.04 KB
Raw

What is the Exploitable App?

Exploitable App is a sandbox for exploring the various ways that applications can be exploited by attackers. Designed to emulate a banking application with various vulnerabilities the Exploitable App is a learning platform that attempts to teach about common web security flaws. The Exploitable App contains generic security flaws that apply to most web applications and it also contains vulnerabilities that specifically pertain to the .NET framework. The vulnerabilities in this app are intented to teach about application security and the code is commented in a way that will allow developers to follow along and learn how to avoid the most common vulnerabilities.

Network Architecture

Exploitable App Network Architecture

Start Hacking Fast

Install Docker

You will first need to install Docker for your system.

Run on Windows using Powershell (>= 3.0) [Without Web Application Firewall]
Start-Job {start-sleep 20; Start-Process "http://localhost/" }
iwr -outf docker-compose.yml https://raw.githubusercontent.com/postworthy/ExploitableApp/master/prod-docker-compose.yml
docker stop $(docker ps -aq)
docker rm $(docker ps -aq)
docker-compose up
Run on Windows using Powershell (>= 3.0) [With Web Application Firewall]
Start-Job {start-sleep 20; Start-Process "http://localhost/" }
iwr -outf docker-compose.yml https://raw.githubusercontent.com/postworthy/ExploitableApp/master/waf-docker-compose.yml
docker stop $(docker ps -aq)
docker rm $(docker ps -aq)
docker-compose up
Setup on Raspberry Pi 3 Model B+ (Raspbian)
curl -sSL https://raw.githubusercontent.com/postworthy/ExploitableApp/master/rpi.sh | sh
sudo docker-compose up

Dive into the Code

Because the application is built using .NET Core you will want to start by getting the latest version of Visual Studio which is currently available for Windows and Mac. You will then need to install Docker for your system. Last but not least you will want to install Git for pulling the latest code from the repo.

After you have navigated to your working folder you will want to get the latest code for the project using git

Windows & Mac
git clone https://github.com/postworthy/ExploitableApp.git

Once you have cloned the repo open the ExploitableApp.sln file to start exploring the code.

Licensing

For Open Source Projects

If you are developing and distributing open source applications under the GPL License, then you are free to use this project under the GPL License. GPL FAQ

Commercial, Enterprise and Government Projects

Contact me at landon.key@gmail.com for more information on Commercial, Enterprise, and Government use of the this project.