V-web is collection of vulnerable web applications. In this collection I'm adding website with some infamous vulnerabilities like IDOR (Type of Broken Access Control vulnerability, which is currently rank top in the OWASP top 10 list).
- IDOR
- IDOR in url
- IDOR in API
- NoSQL Injection
- Insecure 2FA
- XSS (Cross Site Scripting)
- File Upload Vulnerability
As I made the project with this technologies, so you have to install this tech stacks before executing the server
- Node js
- Express js
- Mongo DB
- Mongoose
- HTML
- CSS
- Handlebars
- swagger
- UUID
- Clone the repository
git clone https://github.com/Pankaj0038/V-web
- Get into the directory
cd V-web - Install dependencies
npm i
- Lastly to run all the websites
npm run all