OWASP SamuraiWTF Logo

OWASP SamuraiWTF

1
Free
Visit Website

OWASP SamuraiWTF is a complete Linux desktop for use in application security training. It is free and open-source, distributed both as pre-built VMs and as source code. The source consists of a Vagrantfile, static assets, and build scripts. During the build process, it retrieves a variety of tools and training targets, most of which are open-source projects managed by their respective teams and contributors. It includes tools like OWASP Juice Shop, OWASP Zed Attack Proxy, Mutillidae, SQLMap, and the Community Edition of PortSwigger's Burp Suite. OWASP SamuraiWTF welcomes and encourages issues on the GitHub repository for bugs and enhancements, and pull requests are always welcome.

FEATURES

ALTERNATIVES

Practical security handbook for .NET developers.

One of the oldest hacker conventions in America, offering a unique and personal experience.

A comprehensive guide to SSL/TLS vulnerabilities and vulnerable cipher suites.

A collection of security vulnerabilities in regular expressions used in WAFs with a focus on bypass examples and high severity issues.

A comprehensive mind map diagram summarizing Javascript syntax and concepts in a single picture.

A cybersecurity challenge where you play the role of an incident response consultant investigating an intrusion at Precision Widgets of North Dakota.

Deliberately vulnerable CI/CD environment with 11 challenges to practice security.

Korean cyber-security challenge platform for exploiting and defending web application vulnerabilities.