A vulnerable demo site for people to learn about Web Application Security
Switch branches/tags
Nothing to show
Clone or download
joebasirico Added Favicon!
Thanks Danny
Latest commit a8f9372 Aug 15, 2013


SuperSecure bank is very much a fictional online bank. It was created to help demonstrate common web vulnerabilities. Any resemblance to any other bank is purely coincidental and is actually quite regrettable. This website is truly riddled with security vulnerabilities, do not use any aspect of this site as an example of how to create an online site. Do not reproduce any line of code in a production system. Any failure to do so will likely cause your entire website to become very insecure.

That said, this site is intended to help interested people learn about common web vulnerabilities. Each vulnerability in this system has been seen in the wild in recent history. These vulnerabilities represent a wide array of potential issues that hackers and other malicious users may attempt to exploit. Failure to protect yourself against these types of issues could result in any number of myriad vulnerabilities, not limited to complete server compromise and data loss.

I’ve created this website to help teach, if you have questions about the code, or how to find or fix these issues please feel free to contact me directly at: jbasirico@securityinnovation.com

I hope you have as much fun breaking this site as I had creating it. Happy Hacking!