Skip to content
/ websandbox Public

Small forum website for practicing basic web exploits.

3 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jib1337/websandbox

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
websandbox
websandbox
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
createdb.sql
createdb.sql
 
 
docker-compose.yml
docker-compose.yml
 
 
setup.sh
setup.sh
 
 

Repository files navigation

Vulnerable Web Sandbox

WARNING: Do not expose this to the internet or any public network.

A small forum site for testing several different basic web attacks.

A few possible attacks

  • Reflected/stored XSS
  • SQL injection
  • File upload exploits
  • Online/offline password attacks

Usage

  1. Clone the repo: git clone https://github.com/jib1337/websandbox
  2. Set the setup script execute permissions: cd websandbox; chmod +x setup.sh
  3. Run the setup script: ./setup.sh

Note: You will require adequate permissions to create and run mysql databases, as well as a PHP server.
./setup.sh

Dependancies:

  • mysql
  • mysql php module
  • php

Docker

It is also now possible to start up the site in Docker containers.
Please remember that this doesn't add any extra security so the above warnings still apply. Should work by running docker compose up --build

About

Small forum website for practicing basic web exploits.

Topics

hacking vulnerable vulnerable-web-app

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

3 forks
Report repository

Languages