bwapp
A free and open source deliberately insecure web application designed to help security enthusiasts, developers and students learn about web application security.
About
bWAPP (buggy Web Application) is a PHP/MySQL web application intentionally filled with security vulnerabilities. It serves as a legal testbed for learning and practicing web application security concepts including SQL injection, cross-site scripting (XSS), and many others listed…
