Guys who want to train on web vulnerabilities, these are ten applications that have many web vulnerabilities. You can train on them. They also have new stuff that hasn’t been there for two months. To be honest, I didn’t collect them. I found them on Twitter.
bWAPP – http://itsecgames.com
DVWA – http://github.com/digininja/DVWA
Gruyere – http://google-gruyere.appspot.com
WebGoat – https://owasp.org/www-project-webgoat/
Metasploitable – https://sourceforge.net/projects/metasploitable/files/Metasploitable2/
mutillidae – https://github.com/webpwnized/mutillidae
Web Security Dojo – https://www.mavensecurity.com/resources/web-security-dojo
OWASP Juice Shop – https://owasp.org/www-project-juice-shop/
brokencrystals – https://github.com/NeuraLegion/brokencrystals
Altoro Mutual – http://testfire.net
