OWASP Damn Vulnerable Web Sockets (DVWS) Logo

OWASP Damn Vulnerable Web Sockets (DVWS)

0
Free
Visit Website

OWASP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication. The flow of the application is similar to DVWA. You will find more vulnerabilities than the ones listed in the application. Requirements: In the hosts file of your attacker machine create an entry for dvws.local to point at the IP address hosting the DVWS application. The application requires Apache + PHP + MySQL, PHP with MySQLi support, Ratchet, and ReactPHP-MySQL. Install 'Ratchet' and 'ReactPHP-MySQL' using composer. Set the MySQL hostname, username, password, and an existing database name in the includes/connect-db.php file then go to Setup to finish setting up DVWS. Running DVWS: On the host running this application, run the following command from DVWS directory: php ws-socket.php --heartbeat-interval <sec>

FEATURES

ALTERNATIVES

Open Redirection Analyzer

Technique used to forward one URL to another.

A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots

A cloud-based web application firewall that provides protection against web attacks, DDoS mitigation, and performance optimization through CDN capabilities.

Real-time, eBPF-based Security Observability and Runtime Enforcement component

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

An application security platform that provides runtime threat modeling, vulnerability management, and automated remediation workflows with a focus on identifying exploitable vulnerabilities in production environments.

A lightweight web security auditing toolkit that simplifies security tasks and enhances productivity.

PINNED