OWASP ServerlessGoat Logo

OWASP ServerlessGoat

0
Free
Updated 11 March 2025
Application Security
Serverless
Security
Owasp
Visit Website

This serverless application demonstrates common serverless security flaws as described in the Serverless Security Top 10 Weaknesses guide. Teach developers & security practitioners about common serverless application layer risks and weaknesses. Educate on how serverless application layer weaknesses can be exploited. Teach developers & security practitioners about serverless security best-practices. You can find more information about WebGoat at: https://www.owasp.org/index.php/OWASP_Serverless_Goat

FEATURES

EXPLORE BY TAGS

Serverless

Security

Owasp

SIMILAR TOOLS

jsunpack-n Logo
jsunpack-n

Emulates browser functionality to detect exploits targeting browser vulnerabilities.

Free
Application Security
Kiterunner Logo
Kiterunner

Kiterunner is a tool for lightning-fast traditional content discovery and bruteforcing API endpoints in modern applications.

Free
Application Security
Frida Logo
Frida

Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.

Free
Application Security
Naxsi Logo
Naxsi

A third-party Nginx module that prevents common web attacks by reading a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities.

Free
Application Security
Flyingduck Logo
Flyingduck

A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.

Commercial
Application Security
Tracee Logo
Tracee

Tracee is a runtime security and observability tool using eBPF technology.

Free
Application Security
Webshell-Sniper Logo
Webshell-Sniper

A webshell manager via terminal for controlling web servers running PHP or MySQL.

Free
Application Security
Beagle Security Logo
Beagle Security

An automated security testing platform that performs AI-driven penetration testing and vulnerability assessment for web applications and APIs with compliance reporting capabilities.

Commercial
Application Security
Web Application Exploits and Defenses Logo
Web Application Exploits and Defenses

An educational codelab that demonstrates web application vulnerabilities including XSS, XSRF, and code execution attacks along with their corresponding defensive measures.

Free
Application Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy