A Django vulnerable Web application for testing the w3af framework
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
djmoth
docker
moth
ssl
.gitignore
Dockerfile
LICENSE
README.md
circle.yml
db.sqlite3
docker-compose.yml
manage.py
requirements.txt
start_daemons.py

README.md

moth: Vulnerable web application

A set of vulnerable scripts which can be used for testing web application security scanners, teaching web application security, etc.

This software should never be used in a production environment.

This is a rewrite of the PHP-based moth web application.

Usage

$ git clone https://github.com/andresriancho/django-moth.git
$ cd django-moth
$ pip install -r requirements.txt
$ python manage.py runserver

Then browse to http://127.0.0.1:8000/ .

Docker

The easiest way to use django-moth is to start a docker container:

sudo docker run -p 8000:8000 andresriancho/django-moth

Please note that you can build the docker image yourself:

sudo docker build -t andresriancho/django-moth .

Or simply get it from the registry:

sudo docker pull andresriancho/django-moth

Sister repository

PHP-moth is a sister repository which holds PHP-specific tests.