OWASP PDX Mentorship Resources
  • How to Use This Guide
  • Application Security
    • Overview
    • Beginner Resources
    • Intermediate Resources
    • Advanced Resources
  • Penetration Testing
    • Overview
    • Beginner Resources
    • Intermediate Resources
    • Advanced Resources
    • Certifications
    • Tools
    • Bug Bounties/CTFs
Powered by GitBook
On this page

Was this helpful?

  1. Penetration Testing

Tools

PreviousCertificationsNextBug Bounties/CTFs

Last updated 5 years ago

Was this helpful?

Vulnerable Applications for Practice

Resource

Description

Free

The Web Security Academy contains high-quality learning materials, interactive vulnerability labs, and video tutorials. You can learn at your own pace, wherever and whenever suits you.

Yes

A PHP/MySQL web application that is damn vulnerable

Yes

Welcome to the flAWS 2 challenge! Similar to the original flAWS.cloud (also created by Summit Route), this game/tutorial teaches you AWS (Amazon Web Services) security concepts

Yes

OWASP Juice Shop is probably the most modern and sophisticated insecure web application

Yes

A deliberately insecure application that allows interested developers just like you to test vulnerabilities commonly found in Java-based applications that use common and popular open source components.

Yes

Burp Suite Web Security Academy
Damn Vulnerable Web Application (DVWA)
flAWS 2
Juice Shop Project
Web Goat