AzureGoat Logo

AzureGoat

0
Free
Visit Website

AzureGoat is a vulnerable by design infrastructure on Azure featuring the latest released OWASP Top 10 web application security risks (2021) and other misconfiguration based on services such as App Functions, CosmosDB, Storage Accounts, Automation and Identities. AzureGoat mimics real-world infrastructure but with added vulnerabilities. It features multiple escalation paths and misconfigurations that allow attackers to compromise the entire infrastructure. AzureGoat is designed to help security professionals and penetration testers to practice their skills and test their knowledge in a realistic and challenging environment.

FEATURES

ALTERNATIVES

An integrated application security platform that combines software composition analysis, container scanning, and runtime security monitoring to identify and prioritize vulnerabilities based on actual usage and risk.

A low overhead rate limiter for your routes

A webshell manager via terminal for controlling web servers running PHP or MySQL.

A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.

DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.

A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.

A full python tool for analyzing Android files with various functionalities.

A cloud-based web application firewall that provides protection against web attacks, DDoS mitigation, and performance optimization through CDN capabilities.