GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → interference-security → Dvws

interference-security / Dvws

Licence: mit
OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.

Labels

mysqlwebsocketsvulnerabilitiesowasp

Projects that are alternatives of or similar to Dvws

Awesome Nodejs Security
Awesome Node.js Security resources
Stars: ✭ 1,294 (+384.64%)
Mutual labels:  vulnerabilities, owasp
Hacker ezines
A collection of electronic hacker magazines carefully curated over the years from multiple sources
Stars: ✭ 72 (-73.03%)
Mutual labels:  vulnerabilities, owasp
Dependency Check Sonar Plugin
Integrates Dependency-Check reports into SonarQube
Stars: ✭ 332 (+24.34%)
Mutual labels:  vulnerabilities, owasp
dependency-check-plugin
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Stars: ✭ 107 (-59.93%)
Mutual labels:  owasp, vulnerabilities
Pychat
webchat via WebSockets/WebRTC that allows messaging/video call/screen sharing
Stars: ✭ 152 (-43.07%)
Mutual labels:  mysql, websockets
Sbt Dependency Check
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-29.96%)
Mutual labels:  vulnerabilities, owasp
Dependency Track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Stars: ✭ 718 (+168.91%)
Mutual labels:  vulnerabilities, owasp
Doudizhu
html5 斗地主游戏
Stars: ✭ 323 (+20.97%)
Mutual labels:  mysql, websockets
cwe-tool
A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
Stars: ✭ 40 (-85.02%)
Mutual labels:  owasp, vulnerabilities
cwe-sdk-javascript
A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
Stars: ✭ 18 (-93.26%)
Mutual labels:  owasp, vulnerabilities
Zfile
在线云盘、网盘、OneDrive、云存储、私有云、对象存储、h5ai
Stars: ✭ 4,290 (+1506.74%)
Mutual labels:  mysql
Spring Boot Enterprise Application Development
Spring Boot Enterprise Application Development.《Spring Boot 企业级应用开发实战》
Stars: ✭ 261 (-2.25%)
Mutual labels:  mysql
Myblog
Python+Django+MySQL 博客系统
Stars: ✭ 263 (-1.5%)
Mutual labels:  mysql
Goatee
A Redis-backed notification server written in Go
Stars: ✭ 265 (-0.75%)
Mutual labels:  websockets
Equinox
.NET Event Sourcing library with CosmosDB, EventStoreDB, SqlStreamStore and integration test backends. Focused at stream level; see https://github.com/jet/propulsion for cross-stream projections/subscriptions/reactions
Stars: ✭ 260 (-2.62%)
Mutual labels:  mysql
Odi
🌪🌌 Opinionated, Declarative, Idiomatic framework for building scalable, supportable and reliable enterprise applications.
Stars: ✭ 264 (-1.12%)
Mutual labels:  websockets
Flask Uwsgi Websocket
🔌 High-performance WebSockets for your Flask apps powered by uWSGI.
Stars: ✭ 259 (-3%)
Mutual labels:  websockets
Kamifaka
一款基于VUE3.0的开源免费的卡密发卡系统,高效、稳定可靠。
Stars: ✭ 253 (-5.24%)
Mutual labels:  mysql
Sequel Ace
MySQL/MariaDB database management for macOS
Stars: ✭ 3,989 (+1394.01%)
Mutual labels:  mysql
Lionshare Api
Realtime cryptocurrency API
Stars: ✭ 266 (-0.37%)
Mutual labels:  websockets
View All Similar Projects ➔

OWASP Damn Vulnerable Web Sockets (DVWS)

OWASP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication. The flow of the application is similar to DVWA. You will find more vulnerabilities than the ones listed in the application.

https://owasp.org/www-project-damn-vulnerable-web-sockets/

Requirements

In the hosts file of your attacker machine create an entry for dvws.local to point at the IP address hosting the DVWS application.

Location of hosts file:

Windows: C:\windows\System32\drivers\etc\hosts

Linux: /etc/hosts

Sample entry for hosts file:

192.168.100.199         dvws.local

The application requires the following:

Apache + PHP + MySQL

PHP with MySQLi support

Ratchet

ReactPHP-MySQL

Note: Ratchet and ReactPHP-MySQL are packaged inside DVWS. Separate installation is not required.

Setting up DVWS

Set the MySQL hostname, username, password and an existing database name in the includes/connect-db.php file then go to Setup to finish setting up DVWS.

Running DVWS

On the host running this application, run the following command from DVWS directory: php ws-socket.php

Important Note

DVWS has been developed with limited knowledge of Web Sockets. Feel free to contribute and enhance this project.

Screenshot

image

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].