OWASP Juice Shop is probably the most modern and sophisticated insecure web application! It can be used in security trainings, awareness demos, CTFs and as a guinea pig for security tools! Juice Shop encompasses vulnerabilities from the entire OWASP Top Ten along with many other security flaws found in real-world applications!
OWASP Juice Shop and any contributions are Copyright © by Bjoern Kimminich & the OWASP Juice Shop contributors 2014-2024.
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
OWASP Foundation Web Respository
Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF
Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
Official OWASP Juice Shop tutorials on UI customization and system integration
