[WEB SECURITY] Any Vulnerable Web-Services available online fortesting?

psiinon psiinon at gmail.com
Mon Feb 3 07:30:47 EST 2014


Theres a pretty complete list of vulnerable web apps here:
https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Applications_Directory_Project

We dont currently flag those that provide web services, but we could
easily add such info in the Notes fields.

Note that this project is on GitHub, so you can just send us pull
requests: https://github.com/OWASP/OWASP-VWAD

Simon

On Mon, Feb 3, 2014 at 11:01 AM, Ivan Buetler <ivan.buetler at csnc.ch> wrote:
> Or use free online challenge environment (VPN required)
>
> https://www.owasp.org/index.php/OWASP_Hacking_Lab
>
> Ivan
>
>
>
>
>
> From: websecurity [mailto:websecurity-bounces at lists.webappsec.org] On Behalf
> Of vijayVK velu
> Sent: Montag, 3. Februar 2014 11:55
> To: Pankaj Upadhyay
> Cc: websecurity at lists.webappsec.org; Jason Wood
> Subject: Re: [WEB SECURITY] Any Vulnerable Web-Services available online
> fortesting?
>
>
>
> demo.testfire.net
>
> testphp.vulnweb.com
>
> testasp.vulnweb.com
>
> zero.webappsecurity.com
>
> crackme.cenzic.com
>
> webscantest.com
>
>
>
> Else spin a XAMMP or LAMP and put DVWA, webgoat or  jarlsbery on it.
>
>
>
> Cheers
>
> Vj
>
>
>
> On 2 February 2014 23:30, Pankaj Upadhyay <mr.p.upadhyay at gmail.com> wrote:
>
> Thanks all! I'm going through all of them.. Appreciate the help!
>
>
>
> On Sun, Feb 2, 2014 at 12:09 AM, Jason Wood <jason at jwnetworkconsulting.com>
> wrote:
>
> Damn Vulnerable Web Services has been released by Secure Ideas.
>
> http://dvws.professionallyevil.com
>
>
> Jason
>
>
>> On Feb 1, 2014, at 10:07 AM, Pankaj Upadhyay <mr.p.upadhyay at gmail.com>
>> wrote:
>>
>> Hi All,
>>
>> As someone has compiled a list of all intentionally vulnerable web
>> applications, do we have any such list for web services?
>>
>> I need some vulnerable web-services for my learning. Thought if any of you
>> know any such available web-services?
>>
>> --
>> Thanks,
>> Pankaj Upadhyay
>>
>
>> _______________________________________________
>> The Web Security Mailing List
>>
>> WebSecurity RSS Feed
>> http://www.webappsec.org/rss/websecurity.rss
>>
>> Join WASC on LinkedIn http://www.linkedin.com/e/gis/83336/4B20E4374DBA
>>
>> WASC on Twitter
>> http://twitter.com/wascupdates
>>
>> websecurity at lists.webappsec.org
>>
>> http://lists.webappsec.org/mailman/listinfo/websecurity_lists.webappsec.org
>
>
>
>
>
> --
> Thanks,
> Pankaj Upadhyay
>
>
> _______________________________________________
> The Web Security Mailing List
>
> WebSecurity RSS Feed
> http://www.webappsec.org/rss/websecurity.rss
>
> Join WASC on LinkedIn http://www.linkedin.com/e/gis/83336/4B20E4374DBA
>
> WASC on Twitter
> http://twitter.com/wascupdates
>
> websecurity at lists.webappsec.org
> http://lists.webappsec.org/mailman/listinfo/websecurity_lists.webappsec.org
>
>
>
>
>
> --
> Regards
> Vijay L|PT,E|CSA,C|EH,C|HFI
> http://vijayvkvelu.blogspot.com
> http://in.linkedin.com/in/vijayvelu
> mailto:vijayvkvelu at gmail.com
> " Mess with the Best , Die like the Rest"
>
>
> _______________________________________________
> The Web Security Mailing List
>
> WebSecurity RSS Feed
> http://www.webappsec.org/rss/websecurity.rss
>
> Join WASC on LinkedIn http://www.linkedin.com/e/gis/83336/4B20E4374DBA
>
> WASC on Twitter
> http://twitter.com/wascupdates
>
> websecurity at lists.webappsec.org
> http://lists.webappsec.org/mailman/listinfo/websecurity_lists.webappsec.org
>



-- 
OWASP ZAP Project leader




More information about the websecurity mailing list