Damn Small Vulnerable Web Logo

Damn Small Vulnerable Web

0
Free
Visit Website

Damn Small Vulnerable Web (DSVW) is a deliberately vulnerable web application written in under 100 lines of code, created for educational purposes. It supports majority of (most popular) web application vulnerabilities together with appropriate attacks. Quick start: Run the following command: $ python3 dsvw.py Damn Small Vulnerable Web (DSVW) < 100 LoC (Lines of Code) #v0.2a by: Miroslav Stampar (@stamparm) [i] running HTTP server at 'http://127.0.0.1:65412'... and navigate your browser to http://127.0.0.1:65412/: Requirements: Python (3.x) is required for running this program. Items XML External Entity (local), XML External Entity (remote) and Blind XPath Injection (boolean) require installation of python-lxml (e.g. apt-get install python-lxml). Otherwise, those will be disabled. To install lxml via pip, run the following command: pip install -r requirements.txt

FEATURES

ALTERNATIVES

A script that implements Cognito attacks such as Account Oracle or Priviledge Escalation

Detect trojan source attacks that employ unicode bidi attacks to inject malicious code.

Tracee is a runtime security and observability tool using eBPF technology.

QIRA is a competitor to strace and gdb with MIT license, supporting Ubuntu and Docker for wider compatibility.

Important security headers for Fastify with granular control over application routes.

A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

API security platform that combines discovery, testing, and monitoring capabilities to identify and protect against API vulnerabilities throughout the development lifecycle.