Security Training Platforms

Deliberately vulnerable applications used to facilitate security training, capture‐the‐flag competitions, and penetration testing exercises.

by The Linux Foundation

・

7 projects ・ Updated 14 Mar 2025

Only Linux Foundation projects

Project

Contributors

Organizations

Software value

OWASP Juice Shop

1,442

188

$4.2M

CTFd

1,105

296

$3M

WebGoat

1,096

125

$3M

Damn Vulnerable Web Application (DVWA)

803

$572K

RailsGoat

161

$808K

OWASP WrongSecrets

123

$973K

OWASP Mobile Application Security Testing Guide

Looking for a project that’s not listed?