OWASP Damn Vulnerable Web Sockets (DVWS) Logo

OWASP Damn Vulnerable Web Sockets (DVWS)

0
Free
Visit Website

OWASP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication. The flow of the application is similar to DVWA. You will find more vulnerabilities than the ones listed in the application. Requirements: In the hosts file of your attacker machine create an entry for dvws.local to point at the IP address hosting the DVWS application. The application requires Apache + PHP + MySQL, PHP with MySQLi support, Ratchet, and ReactPHP-MySQL. Install 'Ratchet' and 'ReactPHP-MySQL' using composer. Set the MySQL hostname, username, password, and an existing database name in the includes/connect-db.php file then go to Setup to finish setting up DVWS. Running DVWS: On the host running this application, run the following command from DVWS directory: php ws-socket.php --heartbeat-interval <sec>

FEATURES

ALTERNATIVES

A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

Scanning APK file for URIs, endpoints & secrets.

IDAPython plugin for generating Yara rules/patterns from x86/x86-64 code through parameterization.

A next-generation web scanner that identifies websites and recognizes web technologies, including content management systems, blogging platforms, and more.

A cloud-based DAST solution that discovers, inventories, and tests web applications and APIs for security vulnerabilities across diverse environments.

A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.

Automated web application testing tool

A web-based tool for instrumenting and analyzing Android applications using Flask, Jinja, and Redis.