The last time Hackerfall tried to access this page, it returned a not found error. A cached version of the page is below, or click here to continue anyway

GitHub - quantumfoam/DVNA: Damn Vulnerable Node Application

Damn Vulnerable Node Application (DVNA) is a Node.js web application that is damn vulnerable. Its intended purpose is to teach secure coding concepts to web developers who use Node, and to explore web application vulnerabilities in a controlled class environment or to serve as a cyber range for capture the flag events. It's loaded with common web vulnerabilities and various levels of complexity.


Ubuntu 15.10

Install git, a node version manager and the latest stable release

sudo apt-get install git
wget -qO- | sh
source ~/.bashrc
nvm install 5.3.0
nvm use 5.3.0
git clone
cd dvna/
npm set progress=false
npm install
node dvna.js
navigate to http://localhost:3000/

Go read the source files and find out how to exploit each flaw!



Continue reading on