OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatab…

My example web app that contains multiple vulnerabilities to analyze with OWASP Dependency-Check

Example with Ruby on Rails Application for Codefresh

Damn Vulnerable Rails app

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

GitPython is a python library used to interact with Git repositories.

⛵ App Platform sample Docker application.

Sample CRUD Operations of Spring Boot Microservice

Distributed ORM Framework for Java

Ninja is a full stack web framework for Java. Rock solid, fast and super productive.

Damn Vulnerable NodeJS Application

A deliberately-vulnerable website and exercises for teaching about the OWASP Top 10

The Online Book Shopping Store to manage, buy, add, remove and sell books. Book name and Quantity selection, auto receipt generated and payment options. Login and logout security for both user and …

WebGoat is a deliberately insecure application

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Integrates with various CI environments such as Azure Pipelines, CircleCI, Google CloudBuild…

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

Go example projects

A laboratory for learning secure web and mobile development in a practical manner.

A set of GitHub actions for checking your projects for vulnerabilities