[Owasp-leaders] Vulnerable web apps - in Docker!
evin.hernandez at gmail.com
Fri Sep 30 14:24:10 UTC 2016
We can spin these docker images up on virtual village at no cost to us . It
has container capabilities. Let me know if you want to test a few
On Fri, Sep 30, 2016 at 8:34 AM, psiinon <psiinon at gmail.com> wrote:
> Arg, I should always try links in a new browser before publishing them :P
> The correct link is https://hub.docker.com/u/owaspvwad/
> Thanks for letting me know!
> On Fri, Sep 30, 2016 at 1:30 PM, Rafael Gil <rafael.gillarios at owasp.org>
>> Is it me or the link is broken?
>> On Friday, 30 September 2016, psiinon <psiinon at gmail.com> wrote:
>>> Hi Leaders,
>>> Remember the VWAD project?
>>> It documents lots of lovely vulnerable web apps for you to play with.
>>> The trouble is, some of them can be a pain to install.
>>> So I've started building up a small collection of docker images for some
>>> of these apps, and published them here: https://hub.docker.com/u/owasp
>>> We also just happen to use some of them for testing ZAP, and want to use
>>> more ;)
>>> I didnt want to use the OWASP DockerHub organisation as most of them
>>> wont be OWASP projects.
>>> Some are straight copies of instances other people have created, others
>>> ones I've knocked up.
>>> I like the idea of having one place people can go to find these images
>>> rather than hunt around. I plan to link them off the VWAD page when I get
>>> some time.
>>> I'm not sure if the relevant OWASP projects (securityshepherd,
>>> railsgoat, benchmark) should also be copied into that org?
>>> Feedback and especially more vuln docker images appreciated:)
>>> OWASP ZAP <https://www.owasp.org/index.php/ZAP> Project leader
> OWASP ZAP <https://www.owasp.org/index.php/ZAP> Project leader
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Leaders