OWASP Vulnerable Web Applications Directory

8 views

Skip to first unread message

Simon Bennetts

unread,

Mar 6, 2026, 5:01:43 AM (5 days ago) Mar 6

to ZAP User Group

The OWASP Vulnerable Web Applications Directory has a new home: https://vwad.owasp.org/

It's a comprehensive registry of known vulnerable web and mobile applications for legal security testing and training, so ideal for finding apps to test with ZAP :D

If you spot any apps that are missing then please raise an issue: https://github.com/owasp-vwad/owasp-vwad.github.io/issues/new?template=add-vulnerable-app.md

Feedback appreciated!

Simon

Reply all

Reply to author

Forward

0 new messages