OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Damn Vulnerable NodeJS Application

Vulnerable Python Application To Learn Secure Development

⚠️ This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory

Damn Vulnerable Web Application Docker container

A Broken Application - Very Vulnerable!

Awesome Vulnerable Applications

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

Twitter vulnerable snippets

A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.

Intentionally vulnerable Android application.

🔬 A collection of test cases in the Java language. It contains examples for 112 different CWEs.

An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

Repository to showcase various configuration recipes with various technologies

Damn Vulnerable eXtensive Training Environment

Web application with vulnerabilities found in real cases, both in pentests and in Bug Bounty programs.

Vulnerable OTP/2FA Application written in PHP using Google Authenticator

Frida scripts for mobile application dynamic-analysis.

OpenSSH remote DOS exploit and vulnerable container

Vulnerable API for educational purposes