WebVulnCTF
WVCTF or WebVulnCTF is a gamified web platform that promotes training in pentesting and web application development security in an entertaining way. Through a rewards system, the user must search for a set of flags in the vulnerable application, that correspond to frequent vulnerabilities in web applications.
WebVulnCTF allows you pentest a web application, learn security development, know the OWASP TOP 10 vulnerabilities and have fun with the gamification. You can pentest the application, get the flags, and fight with your hacker friends to be the first to get the medals and trophies.
Goals
- Learn OWASP TOP 10: WVCTF helps you to learn and understand the OWASP TOP 10 for web applications: SQLi, XSS, CSRF, Broken Authentication…
- Real web application: WebVulnCTF is developed like a real web application: MVC, REST, JS frontend…
- Easy to install and use: You only need Maven and NodeJS! (and two databases)
- Free and open-source: For and to the community
