Damn Vulnerable Web Application (DVWA) Logo

Damn Vulnerable Web Application (DVWA)

0
Free
Updated 11 March 2025
Application Security
Appsec
Appsec Testing
Dvwa
Php
Mysql
Web App Security
Vulnerable Apps
Visit Website

Damn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and to aid both students & teachers to learn about web application security in a controlled class room environment. This is intentional. You are encouraged to try and discover as many issues as possible. WARNING! Damn Vulnerable Web Application is damn vulnerable! Do not upload it to your hosting provider's public html folder or any Internet facing servers, as they will be compromised. It is recommended using a virtual machine (such as VirtualBox or VMware), which is set to NAT networking mode. Inside a guest machine, you can download and install XAMPP for the web server and database. Disclaimer We do not take responsibility for

FEATURES

EXPLORE BY TAGS

Appsec

Appsec Testing

Dvwa

Php

Mysql

Web App Security

Vulnerable Apps

SIMILAR TOOLS

AMAaaS Agent Logo
AMAaaS Agent

Enhance your Android experience with the AMAaaS Agent APK for better performance and improved user experience.

Free
Application Security
GoLinkFinder Logo
GoLinkFinder

A fast and minimal JS endpoint extractor

Free
Application Security
Drltrace Logo
Drltrace

Drltrace is a dynamic API calls tracer for Windows and Linux applications.

Free
Application Security
Octoscan Logo
Octoscan

Octoscan is a static analysis tool that scans GitHub Actions workflows for security vulnerabilities and misconfigurations.

Free
Application Security
xygeni Logo
xygeni

An ASPM platform that provides software supply chain security through risk assessment, prioritization, and protection mechanisms.

Commercial
Application Security
Dependencies Logo
Dependencies

An open-source modern Dependency Walker for Windows developers.

Free
Application Security
apkid Logo
apkid

APKiD is a tool that identifies compilers, packers, obfuscators, and other weird stuff in APK files.

Free
Application Security
Falco Logo
Falco

Falco is a cloud native runtime security tool for Linux operating systems that detects and alerts on abnormal behavior and potential security threats in real-time.

Free
Application Security
eslint-plugin-anti-trojan-source Logo
eslint-plugin-anti-trojan-source

ESLint plugin to prevent Trojan Source attacks.

Free
Application Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy