Vulnerable APIs Lab Setup

VAmPI - by eRev0s

GitHub Repository: VAmPI

Setup:

git clone https://github.com/erev0s/VAmPI.git
cd VAmPI/
docker build -t vampi_docker:latest .
docker run -d -p 5000:5000 vampi_docker:latest

crAPI (OWASP crAPI) - by OWASP

GitHub Repository: crAPI

Prerequisites: Docker Compose version 1.27.0 or above. Installation of Docker Compose (Version 1.27.0):

apt update
apt install -y curl
curl -L "https://github.com/docker/compose/releases/download/1.27.0/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
chmod +x /usr/local/bin/docker-compose
docker-compose --version

Download the docker-compose.yml file:

curl -o docker-compose.yml https://raw.githubusercontent.com/OWASP/crAPI/main/deploy/docker/docker-compose.yml

Pull the necessary Docker images:
```
docker-compose pull
```

Start OWASP crAPI:

docker-compose -f docker-compose.yml --compatibility up -d

vAPI - by roottusk

GitHub Repository: vAPI

Setup:

git clone https://github.com/roottusk/vapi.git
cd VAmPI 
docker-compose up -d

Tiredful-API - by payatu

GitHub Repository: Tiredful-API

Setup:

git clone https://github.com/payatu/Tiredful-API.git
cd Tiredful-API/
docker build -t tiredful .
docker run -p 8000:8000 --name tiredful -it tiredful

vulnapi - by tkisason

GitHub Repository: vulnapi

Setup:

git clone https://github.com/tkisason/vulnapi.git
cd vulnapi
pip install -r requirements.txt
./run.sh

Damn Vulnerable GraphQL Application (DVGA) - by dolevf

GitHub Repository: DVGA

Setup:

git clone https://github.com/dolevf/Damn-Vulnerable-GraphQL-Application.git && cd Damn-Vulnerable-GraphQL-Application
docker build -t dvga .
docker run -d -t -p 5013:5013 -e WEB_HOST=0.0.0.0 --name dvga dvga

poc-graphql - by righettod

GitHub Repository: poc-graphql

Setup:

git clone https://github.com/righettod/poc-graphql.git
cd poc-graphql
docker build -t poc-graphql .
docker run -p 8080:8080 poc-graphql:latest

Websheep - by marmicode

GitHub Repository: Websheep

Setup:

apt install nodejs
curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | gpg --dearmor -o /usr/share/keyrings/yarn-archive-keyring.gpg
echo "deb [signed-by=/usr/share/keyrings/yarn-archive-keyring.gpg] https://dl.yarnpkg.com/debian stable main" | sudo tee /etc/apt/sources.list.d/yarn.list
apt update
apt install yarn
git clone https://github.com/marmicode/websheep.git
yarn install
yarn start

DVWS-node - by snoopysecurity

GitHub Repository: DVWS-node

Setup:

git clone https://github.com/snoopysecurity/dvws-node.git
cd dvws-node
docker-compose up

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Vulnerable-Labs-Setup.md

Vulnerable-Labs-Setup.md

Vulnerable APIs Lab Setup

VAmPI - by eRev0s

crAPI (OWASP crAPI) - by OWASP

vAPI - by roottusk

Tiredful-API - by payatu

vulnapi - by tkisason

Damn Vulnerable GraphQL Application (DVGA) - by dolevf

poc-graphql - by righettod

Websheep - by marmicode

DVWS-node - by snoopysecurity

Files

Vulnerable-Labs-Setup.md

Latest commit

History

Vulnerable-Labs-Setup.md

File metadata and controls

Vulnerable APIs Lab Setup

VAmPI - by eRev0s

crAPI (OWASP crAPI) - by OWASP

vAPI - by roottusk

Tiredful-API - by payatu

vulnapi - by tkisason

Damn Vulnerable GraphQL Application (DVGA) - by dolevf

poc-graphql - by righettod

Websheep - by marmicode

DVWS-node - by snoopysecurity