[Owasp-leaders] Vulnerable scripts in PHP

Vlad Styran vlad.styran at owasp.org
Fri May 26 07:00:43 UTC 2017


Hi Rashad,

Have you tried Mutillidae or Damn Vulnerable Web App (DVWA) yet? Both are written in PHP and demonstrate many vulnerability caresses and DVWA has several ‘Protection Modes’ that show different countermeasures one can implement.

https://www.owasp.org/index.php/OWASP_Mutillidae_2_Project <https://www.owasp.org/index.php/OWASP_Mutillidae_2_Project>
http://www.dvwa.co.uk <http://www.dvwa.co.uk/>


Best,
Vlad Styran

OWASP Kyiv Chapter Lead
PGP pub key: 87F07F08 <http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x19ED24B087F07F08>
> On May 26, 2017, at 07:51, Rashad Aliyev <microphprashad at gmail.com> wrote:
> 
> Hello,
> 
> I'm preparing one course materials for tech Filters in PHP.
> 
> Searching scripts writed in PHP for showing vulnerabilities in PHP.
> SQL injection, XSS and so.
> 
> Have anyone like this script or projects?
> 
> Thank you,
> 
> --
> Rashad Aliyev
> 
> @alievinfo <https://twitter.com/alievinfo>
> (+994 50) 648 2737
> 
> 
> 
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20170526/0961d996/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20170526/0961d996/attachment.pgp>


More information about the OWASP-Leaders mailing list