A Django vulnerable Web application for testing the w3af framework
Python CSS HTML
Permalink
Failed to load latest commit information.
djmoth Revert "Use nginx+uwsgi to try to avoid delays/timeouts in w3af build" Aug 5, 2015
docker Back to trunserver Aug 7, 2015
moth Fix for new way of grouping form autocompletes Dec 4, 2015
ssl Adding SSL certificates Dec 5, 2013
.gitignore Ignores for pycharm Dec 9, 2013
Dockerfile Improve dockerfile #16 to use ADD Aug 14, 2015
LICENSE
README.md Revert "Use nginx+uwsgi to try to avoid delays/timeouts in w3af build" Aug 5, 2015
circle.yml Revert "Use nginx+uwsgi to try to avoid delays/timeouts in w3af build" Aug 5, 2015
db.sqlite3 Don't recommend utils Jun 23, 2015
docker-compose.yml docker-compose memcached #17 Aug 14, 2015
manage.py Moving things around Nov 7, 2013
requirements.txt Revert "Use nginx+uwsgi to try to avoid delays/timeouts in w3af build" Aug 5, 2015
start_daemons.py Cosmetic Jul 20, 2015

README.md

moth: Vulnerable web application

A set of vulnerable scripts which can be used for testing web application security scanners, teaching web application security, etc.

This software should never be used in a production environment.

This is a rewrite of the PHP-based moth web application.

Usage

$ git clone https://github.com/andresriancho/django-moth.git
$ cd django-moth
$ pip install -r requirements.txt
$ python manage.py runserver

Then browse to http://127.0.0.1:8000/ .

Docker

The easiest way to use django-moth is to start a docker container:

sudo docker run -p 8000:8000 andresriancho/django-moth

Please note that you can build the docker image yourself:

sudo docker build -t andresriancho/django-moth .

Or simply get it from the registry:

sudo docker pull andresriancho/django-moth

Sister repository

PHP-moth is a sister repository which holds PHP-specific tests.