webgoat/webgoat-8.0 repository overview

⁠Official WebGoat Docker image release 8.0

Please note: WebGoat 8.0 is work in progress and currently does not support a lot of lesson since we are working on a new lesson model. For a stable version use https://hub.docker.com/r/webgoat/webgoat-7.1/⁠

⁠Running

docker pull webgoat/webgoat-8.0 docker run -p 8080:8080 -t webgoat/webgoat-8.0

⁠About

WebGoat is a deliberately insecure application that allows interested developers just like you to test vulnerabilities commonly found in Java-based applications that use common and popular open source components.

Now, while we in no way condone causing intentional harm to any animal, goat or otherwise, we think learning everything you can about security vulnerabilities is essential to understanding just what happens when even a small bit of unintended code gets into your applications.

What better way to do that than with your very own scapegoat?

Feel free to do what you will with Hack. Poke, prod and if it makes you feel better, scare him until your heart’s content. Go ahead, and Hack the goat. We promise he likes it.

Thanks for your interest!

The WebGoat Team