VulnWeb is a intentionally vulnerable website made for security learners, developers, and students. It helps them understand common security issues in websites and how to fix them. By using this site in a safe environment, users can practice finding and solving security problems hands-on.
- Multiple Vulnerabilities: Explore a variety of common web vulnerabilities, including:
-
SQL Injection: Understand how improper handling of user input can lead to unauthorized database access.
-
Cross-Site Scripting (XSS): Learn about injecting malicious scripts into web pages viewed by other users.
-
File Inclusion: Study the risks associated with including files without proper validation.
-
Command Execution: See how attackers can execute arbitrary commands on the server.
-
File Upload: Examine the dangers of unrestricted file uploads.
-
User Authentication: Experience common authentication mechanisms and their potential weaknesses.
-
To set up and run VulnWeb locally, follow these steps:
Ensure you have the following installed on your system:
git clone https://github.com/yourusername/VulnWeb.git
cd VulnWebUse npm or yarn to install the necessary dependencies:
npm installTo start the development server:
npm run devThe application will be accessible at http://localhost:8080/
SecureMSG is licensed under the MIT License. See the LICENSE file for more information.
Developed by Shoaib Shaikh. Connect with me on GitHub.
For any issues or feature requests, please open an issue.