intentionally vuln web Application Security in django.
our roadmap build intentionally vuln web Application in django. The Vulnerability can based on OWASP top ten
• A1:2017-Injection
• A2:2017-Broken Authentication
• A3:2017-Sensitive Data Exposure
• A4:2017-XML External Entities (XXE)
• A5:2017-Broken Access Control
• A6:2017-Security Misconfiguration
• A7:2017-Cross-Site Scripting (XSS)
• A8:2017-Insecure Deserialization
• A9:2017-Using Components with Known Vulnerabilities
• A10:2017-Insufficient Logging & Monitoring
To setup the project on your local machine:
First, Clone the repository using GitHub website or git in Terminal
git clone https://github.com/adeyosemanputra/pygoat.git
### To Download a specific branch
git clone -b <branch_name> https://github.com/adeyosemanputra/pygoat.git
- Install all app and python requirements using installer file -
bash installer.sh
- Change directory to the the Django Project directory
cd pygoat
- Apply the migrations
python3 manage.py migrate
. - Finally, run the development server
python3 manage.py runserver
. - The project will be available at http://127.0.0.1:8000
- Install python3 requirements
pip install -r requirements.txt
. - Change directory to the the Django Project directory
cd pygoat
- Apply the migrations
python3 manage.py migrate
. - Finally, run the development server
python3 manage.py runserver
. - The project will be available at http://127.0.0.1:8000
- Install all app and python requirements using
setup.py
file -pip3 install .
- Change directory to the the Django Project directory
cd pygoat
- Apply the migrations
python3 manage.py migrate
. - Finally, run the development server
python3 manage.py runserver
. - The project will be available at http://127.0.0.1:8000
- Install Docker
- Run
docker pull pygoat/pygoat
- Run
docker run --rm -p 8000:8000 pygoat/pygoat
ordocker run pygoat/pygoat
- Browse to http://127.0.0.1:8000
- From Source using
installer.sh
- Without using
installer.sh
http://pygoat-web.herokuapp.com
http://pygoat.herokuapp.com
http://pygoat-dep.herokuapp.com
credentials:
username : user
password : user12345
or you could login with 0auth (google)
Thanks goes to these wonderful people (emoji key):
pwned-17 💻 |
Aman Singh 💻 |
adeyosemanputra 💻 📖 |
gaurav618618 💻 📖 |
MajAK 💻 |
JustinPerkins 💻 |
Liu Peng 💻 |
This project follows the all-contributors specification. Contributions of any kind welcome!