Skip to content

This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)

Notifications You must be signed in to change notification settings

magmax/DamnVulnerableMicroServices

 
 

Repository files navigation

Damn Vulnerable Microservices (DVMS)

Damn Vulnerable Microservices (DVMS) is microservices that is damn vulnerable with no exception. These project goals are designed to learn about OWASP TOP 10 API Security risks. So, you can demonstrate your skill to exploiting and protecting against Kubernetes Microservices.

Warning

Damn Vulnerable Microservice (DVMS) is very damn vulnerable! Do not use it as reference on how to build good microservices on your production server. I recommend use it in local environment to prevent unauthorized attacker exploiting your valuable server.

Disclaimer

We do not take responsibility for the way in which any one uses this microservices application. We have made the purposes of the application clear and it should not be used maliciously. We have given warnings and taken measures to prevent users from installing DVMS on to live web servers. If your web server is compromised via an installation of DVMS, it is not our responsibility, it is the responsibility of the person/s who uploaded and installed it.

License

Damn Vulnerable Microservices is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

Requirements

  1. Kubernetes cluster on your local desktop (https://kubernetes.io/docs/tasks/tools/)
  2. Homebrew (https://brew.sh/)

How to setup

$ brew install skaffold
$ git clone git@github.com:ne0z/DamnVulnerableMicroServices.git
$ git submodule update --init

How to run in development mode

$ skaffold dev

About

This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • JavaScript 90.0%
  • HTML 5.3%
  • CSS 1.7%
  • Makefile 1.5%
  • Dockerfile 1.5%