postmodernMay 15, 2023
WebGoat/RailsGoat are great and all, but there's a lot of stuff going on in those apps. I think it might be better to have really basic vulnerable apps to test against and practicing writing exploits against.
https://github.com/ronin-rb/vuln-apps#readme
#cmdi #lfi #rfi #webvuln #infosec101
GitHub - ronin-rb/vuln-apps: A collection of simple vulnerable web apps for testing vulnerability scanners or educational purposes.

A collection of simple vulnerable web apps for testing vulnerability scanners or educational purposes. - ronin-rb/vuln-apps

GitHub
Đł₴₵Ø₦₦Ɇ₵₮ɆĐ Feb 13, 2023
Typescript seems to be the new PHP in terms of web vulnerabilities. It is so extremely easy to make spaghetti code in Typescript, that it is more likely than actually writing good code.
#typescriptIsHell #webvuln #uglycode #knowYourDependencies