Skip to content

Navigation Menu

vulnerable-code

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

Sign up

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

Vulnerable Code

Daily-updated repository of vulnerable code for benchmarking security tools and applications.

3 followers
https://www.secologist.com/
https://github.com/secologist/
github@secologist.com

Overview
Repositories
Projects
Packages
People

More

Overview
Repositories
Projects
Packages
People

Pinned Loading

sync-forked-repositories Public

An scheduler to sync all forked repositories daily

1

Repositories

Loading

Type

Select type

All Public Sources Forks Archived Mirrors Templates

Language

Select language

All Bicep C C# C++ CSS Dockerfile Go HCL HTML Java JavaScript Kotlin PHP Python Ruby Rust Scala SCSS Shell Solidity Starlark TypeScript

Sort

Select order

Last updated Name Stars

Showing 10 of 113 repositories

intentionally-vulnerable-golang-project Public Forked from sonatype-nexus-community/intentionally-vulnerable-golang-project
This is a project we created that has dependencies with vulnerabilities, for us to test out nancy

Shell 0 125 0 2 Updated Apr 14, 2025
java-sec-code Public Forked from JoyChou93/java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security

Java 0 717 0 1 Updated Apr 10, 2025
vulhub Public Forked from vulhub/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose

Dockerfile 0 MIT 4,642 0 16 Updated Apr 9, 2025
kubernetes-goat Public Forked from madhuakula/kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

HTML 0 MIT 816 0 3 Updated Apr 8, 2025
zipdu Public Forked from ShiftLeftSecurity/zipdu
zipdu is a webservice implementation vulnerable to zip bombs and directory traversals. Written in multiple different languages

C++ 0 Apache-2.0 3 0 1 Updated Mar 28, 2025
vulndb Public Forked from golang/vulndb
[mirror] The Go Vulnerability Database

Go 0 73 0 0 Updated Mar 26, 2025
supplygoat Public Forked from guyeisenkot/supplygoat
"Vulnerable by Design" supply chain is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

HCL 0 Apache-2.0 268 0 1 Updated Mar 22, 2025
wrongsecrets Public Forked from OWASP/wrongsecrets
Vulnerable app with examples showing how to not use secrets

Java 0 AGPL-3.0 436 0 0 Updated Mar 22, 2025
juice-shop Public Forked from juice-shop/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

TypeScript 1 MIT 12,588 0 3 Updated Mar 22, 2025
play-webgoat Public Forked from playframework/play-webgoat
A vulnerable Play application for attackers.

Scala 0 CC0-1.0 85 0 0 Updated Mar 22, 2025

View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Python PHP Java JavaScript HTML

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.