vulnerability-website

Introduction

This project provides an insecure web application and a hardened web application. The insecure web application contains vulnerabilities as per OWASP guidelines. This project is meant for educational purposes only.

Requirements

1. Git
2. Docker
3. Docker-compose

Installation

Installing Docker for Ubuntu Engine (Recommended)

$ sudo apt-get update

$ sudo apt-get install \
    apt-transport-https \
    ca-certificates \
    curl \
    gnupg-agent \
    software-properties-common
$ curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -

$ sudo add-apt-repository \
   "deb [arch=amd64] https://download.docker.com/linux/ubuntu \
   $(lsb_release -cs) \
   stable"

$ sudo apt-get update
$ sudo apt-get install docker-ce docker-ce-cli containerd.io

Refer to here on how to install Docker for other distros.

Installing Docker-compose for Ubuntu Engines

$ sudo curl -L "https://github.com/docker/compose/releases/download/1.26.1/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
$ sudo chmod +x /usr/local/bin/docker-compose

Refer to here on how to install docker-compose for other distros

Usage

Just start it with docker-compose!

$ docker-compose up -d

Contributing

Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.

Please make sure to update tests as appropriate.

License

MIT