We all know that, with the growth of technology. There are gaping holes in almost every security system. Hackers are people, who think from a different perspective because they simply don’t want to browse a site or download a file. They want to turn the website upside down. So if you’re also willing to do this kind of stuff. Well, you’re at a right place. Now with the help of these 5 vulnerable websites, practice your skills legally.
It doesn’t matter if you’re a beginner. You can learn new things and improve your skills on these 5 sites.
Basically, bricks is a platform for learning web application security. And apart from that, you can perform a test bed for analysing the performance of web application security scanners. “Abhi M Balakrishnan” is the leader of this project. Bricks are built on PHP and MySQL, It is a web application security learning platform. So the main object of this project is to focus on the different variations of commonly seen application security issues. if you are willing to try it, Then here is some information for you about how it works. Basically, what you need to do is “break the bricks” because each Brick has a security issue, which can be leveraged by using automated software tools or manually too.
If you want to learn this, then here is the link for the official site. The complete documentation and instruction videos can also be accessed or downloaded for free.
bWAPP is known for Buggy Web Application. It can be used by security enthusiasts, students, and developers to discover and to prevent web vulnerabilities. It is created by Malik Messelem, bWAPP also conduct successful penetration testing and ethical hacking projects. Now, why is this on the top 5 penetrating testing sites? Because it has over 100 web vulnerabilities.
bWAPP can be hosted on Linux/Windows with Apache/IIS and MySQL. And it is a PHP application that uses a MySQL database. By downloading bWAPP you get free tutorials and introduction tutorial, including free exercises.
Here is the link to download it officially.
Also Read: Top 5 Best Hacking apps for iPhone 2016
3. Damn Vulnerable iOS App (DVIA)
This application was made for users as a tool for the purpose of iOS penetration skills in a safe and legal environment. This application can also be used by students, mobile security enthusiasts for learning or reviewing the basics of mobile application security. This application contains a section, where the users can read various articles on iOS application security. And the vulnerabilities and solutions covered in this app are tested up to iOS version 8.1. This project is developed and maintained by @prateekg147. DVIA is free and open source so you can download it for free.
Also if you want free solutions, then click here to download.
4. Damn Vulnerable Web Application (DVWA)
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. The site was created with the help of @ethicalhack3r, Ryan Dewhurst. The goal is to be an aid for security professionals to test their skills, tools in the safe and legal environment.
Also, this was created to help web developers to understand the processes of securing web applications,
You can download it here.
5. ExploitMe Mobile Android Labs
ExploitMe Mobile Android Labs Focuses on 8 specific vulnerabilities commonly found in Android applications. And the Developers and security professionals who are building on the Android platform stand a chance to act as attackers through the ExploitMe Mobile Android Labs. They get secure by Security Compass help in becoming more secure Android developers and defenders.
Some Lab lessons are:
- File system access permission
- Parameter manipulation of mobile traffic
- Insecure logging
- Encryption of traffic
- Insecure storage of files
- Password lock screens
Click here for QuickGuide.
Share this article, if you’ve liked it. Hope you liked this and boosted your intelligence more accurate with all these top 5 sites that you can check vulnerability and make your ethical hacking practice legally.
Please subscribe our YouTube channel also check our Twitter for regular updates. 😀 Thanks