digininja/DVWA

Features

• Vulnerability Training - Serves as an interactive environment for practicing exploitation and remediation based on the OWASP Top 10.
• Security Labs and Practice - Provides a vulnerable application for hands-on training and testing of security auditing skills.
• Penetration Testing Environments - Provides a containerized environment for testing security tools and practicing exploit techniques against web flaws.
• Vulnerable Lab Environments - Deploys an intentionally insecure application to train professionals in identifying and documenting software flaws.
• Cybersecurity Training Labs - Offers a curated training environment to learn the mechanics of web vulnerabilities through increasing difficulty.
• Vulnerable Web Applications - Provides a web application intentionally designed with insecure PHP patterns to simulate real-world security flaws.
• Web Application Penetration Testing - Provides a safe environment to practice the systematic identification and exploitation of web service security flaws.
• Database Engines - Supports switching between different database engines to test how diverse storage systems respond to injection.
• Vulnerability Complexity Levels - Adjusts source code execution paths based on configuration to vary the technical complexity of vulnerabilities.
• PHP MySQL Security Labs - Provides a PHP and MySQL based lab specifically for testing SQL injection and cross-site scripting attacks.
• Security Benchmarks - Acts as a controlled environment to evaluate the detection accuracy of automated vulnerability scanners.
• SQL Injection Research - Enables research into how different database engines respond to various SQL injection attack patterns.
• Vulnerable Web Applications - Classic PHP/MySQL application for practicing web security.

Star history