aplicativos da web vulneráveis

A tabela a seguir apresenta as URLs de todos os aplicativos da web vulneráveis, operando instalações de sistemas, software antigo e jogos de guerra [de hacking] sites. Os URLs para as aplicações individuais que fazem parte de outras entidades de coleta não foram dados como não é necessário fazer o download de cada um deles manualmente e configurá-los se eles já estão disponíveis em um estado de configurada. Para as tecnologias usadas em cada aplicação web, por favor, consulte o mapa mental acima.

Aplicações Web vulneráveis

OWASP BWA     http://code.google.com/p/owaspbwa/
OWASP Hackademic     http://hackademic1.teilar.gr/
OWASP SiteGenerator     https://www.owasp.org/index.php/Owasp_SiteGenerator
Bricks OWASP     http://sourceforge.net/projects/owaspbricks/
OWASP Shepherd Segurança     https://www.owasp.org/index.php/OWASP_Security_Shepherd
Porra Vulnerável Web App (DVWA)     http://www.dvwa.co.uk/
Web Services Porra Vulneráveis ​​(DVWS)     http://dvws.professionallyevil.com/
WebGoat.NET     https://github.com/jerryhoff/WebGoat.NET/
PentesterLab     https://pentesterlab.com/
Projeto de Segurança da borboleta     http://thebutterflytmp.sourceforge.net/
Foundstone mude-me Banco     http://www.mcafee.com/us/downloads/free-tools/hacme-bank.aspx
Foundstone mude-me Books     http://www.mcafee.com/us/downloads/free-tools/hacmebooks.aspx
Foundstone mude-me Casino     http://www.mcafee.com/us/downloads/free-tools/hacme-casino.aspx
Foundstone mude-me envio     http://www.mcafee.com/us/downloads/free-tools/hacmeshipping.aspx
Foundstone mude-me Viagem     http://www.mcafee.com/us/downloads/free-tools/hacmetravel.aspx
LAMPSecurity     http://sourceforge.net/projects/lampsecurity/
Traça     http://www.bonsai-sec.com/en/research/moth.php
WackoPicko     https://github.com/adamdoupe/WackoPicko
BadStore     http://www.badstore.net/
WebSecurity Dojo     http://www.mavensecurity.com/web_security_dojo/
BodgeIt loja     http://code.google.com/p/bodgeit/
hackxor     http://hackxor.sourceforge.net/cgi-bin/index.pl
SecuriBench     http://suif.stanford.edu/~livshits/securibench/
SQLol     https://github.com/SpiderLabs/SQLol
CryptOMG     https://github.com/SpiderLabs/CryptOMG
XMLmao     https://github.com/SpiderLabs/XMLmao
Exploit KB Vulnerável Web App     http://exploit.co.il/projects/vuln-web-app/
PHDays iBank CTF     http://blog.phdays.com/2012/05/once-again-about-remote-banking.html
Fim de jogo     http://sourceforge.net/projects/null-gameover/
Zap WAVE     http://code.google.com/p/zaproxy/downloads/detail?name=zap-wave-0.1.zip
PuzzleMall     http://code.google.com/p/puzzlemall/
VulnApp     http://www.nth-dimension.org.uk/blog.php?id=88
SQLI-laboratórios     https://github.com/Audi-1/sqli-labs
Bêbado de administração Web Hacking Desafio     https://bechtsoudis.com/work-stuff/challenges/drunk-admin-web-hacking-challenge/
bWAPP     http://www.mmeit.be/bwapp/
http://sourceforge.net/projects/bwapp/files/bee-box/
NOWASP / Mutillidae 2     http://sourceforge.net/projects/mutillidae/
SocketToMe     http://digi.ninja/projects/sockettome.php

Instalações de sistemas operacionais vulneráveis

Linux Porra Vulnerável     http://sourceforge.net/projects/virtualhacking/files/os/dvl/
Metasploitable     http://sourceforge.net/projects/virtualhacking/files/os/metasploitable/
LAMPSecurity     http://sourceforge.net/projects/lampsecurity/
UltimateLAMP     http://www.amanhardikar.com/mindmaps/practice-links.html
Heorot: DE-ICE, hackerdemia     http://hackingdojo.com/downloads/iso/De-ICE_S1.100.iso
http://hackingdojo.com/downloads/iso/De-ICE_S1.110.iso
http://hackingdojo.com/downloads/iso/De-ICE_S1.120.iso
http://hackingdojo.com/downloads/iso/De-ICE_S2.100.iso
hackerdemia - http://hackingdojo.com/downloads/iso/De-ICE_S1.123.iso
pWnOS     http://www.pwnos.com/
Holynix     http://sourceforge.net/projects/holynix/files/
Kioptrix     http://www.kioptrix.com/blog/
exploram-exercícios - nebulosa, protoestrela, fusão     http://exploit-exercises.com/download
PenTest Laboratório     http://pentestlab.org/lab-in-a-box/
RebootUser Vulnix     http://www.rebootuser.com/?page_id=1041
neutronstar     http://neutronstar.org/goatselinux.html
scriptjunkie.us     http://www.scriptjunkie.us/2012/04/the-hacker-games/
21LTR     http://21ltr.com/scenes/
SecGame # 1: Sauron     http://sg6-labs.blogspot.co.uk/2007/12/secgame-1-sauron.html
Lab pentester     https://www.pentesterlab.com/exercises
Vulnserver     http://www.thegreycorner.com/2010/12/introducing-vulnserver.html
TurnKey Linux     http://www.turnkeylinux.org/
BitNami     https://bitnami.com/stacks
Servidor Elastic     http://elasticserver.com
CentOS     http://www.centos.org/

Sites de download de versões mais antigas do Various Software

Exploit-DB     http://www.exploit-db.com/
Versão antiga     http://www.oldversion.com/
Aplicativos antigos     http://www.oldapps.com/
VirtualHacking Repo     sourceforge.net/projects/virtualhacking/files/apps%40realworld/

Sites por fornecedores de Teste de Software de Segurança

Acunetix acuforum     http://testasp.vulnweb.com/
Acunetix acublog     http://testaspnet.vulnweb.com/
Acunetix acuart     http://testphp.vulnweb.com/
Cenzic crackmebank     http://crackme.cenzic.com
HP freebank     http://zero.webappsecurity.com
IBM altoromutual     http://demo.testfire.net/
Mavituna testsparker     http://aspnet.testsparker.com
Mavituna testsparker     http://php.testsparker.com
NTOSpider Test Site     http://www.webscantest.com/

Sites para melhorar suas habilidades de hacker

EnigmaGroup     http://www.enigmagroup.org/
Exploit Exercícios     http://exploit-exercises.com/
Google Gruyere     http://google-gruyere.appspot.com/
Lab Gh0st     http://www.gh0st.net/
Hackear Este Site     http://www.hackthissite.org/
HackThis     http://www.hackthis.co.uk/
HackQuest     http://www.hackquest.com/
Hack.me     https://hack.me
Hacking-Lab     https://www.hacking-lab.com
Hacker Desafio     http://www.dareyourmind.net/
Teste Hacker     http://www.hackertest.net/
Hacme Jogo     http://www.hacmegame.org/
Hax.Tor     http://hax.tor.hu/
OverTheWire     http://www.overthewire.org/wargames/
PentestIT     http://www.pentestit.ru/en/
pwn0     https://pwn0.com/home.php
RootContest     http://rootcontest.com/
Enraizar-me     http://www.root-me.org/?lang=en
Segurança Treasure Hunt     http://www.securitytreasurehunt.com/
Estourar a pilha     http://www.smashthestack.org/
TheBlackSheep e Erik     http://www.bright-shadows.net/
ThisIsLegal     http://thisislegal.com/
Try2Hack     http://www.try2hack.nl/
WabLab     http://www.wablab.com/hackme
XSS: Você pode XSS Este?     http://canyouxssthis.com/HTMLSanitizer/
XSS: ProgPHP     http://xss.progphp.com/

Sites CTF / Arquivo

CTFtime (Detalhes da CTF Desafios)     http://ctftime.org/ctfs/
shell-storm Repo     http://shell-storm.org/repo/CTF/
CAPTF Repo     http://captf.com/
VulnHub     https://www.vulnhub.com
 
Aplicativos móveis

ExploitMe móveis Android Labs     http://securitycompass.github.io/AndroidLabs/
ExploitMe móveis para iPhone Labs     http://securitycompass.github.io/iPhoneLabs/
OWASP iGOAT     http://code.google.com/p/owasp-igoat/
OWASP Goatdroid     https://github.com/jackMannino/OWASP-GoatDroid-

Project

Porra Vulnerável iOS App (DVIA)     http://damnvulnerableiosapp.com/
Porra Vulnerável Android App (DVAA)     https://code.google.com/p/dvaa/
Porra Aplicação FirefoxOS Vulnerável (DVFA)     https://github.com/pwnetrationguru/dvfa/
NCN Wargame     http://noconname.org/evento/wargame/
Hacme Banco Android     http://www.mcafee.com/us/downloads/free-tools/hacme-bank-android.aspx
InsecureBank     http://www.paladion.net/downloadapp.html
 
Variado

VulnVPN     http://www.rebootuser.com/?page_id=1041
VulnVoIP     http://www.rebootuser.com/?page_id=1041
NETinVM     http://informatica.uv.es/~carlos/docencia/netinvm/
GNS3     http://sourceforge.net/projects/gns-3/
XAMPP     https://www.apachefriends.org/index.html