The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.

A buffer overflow vulnerable CGI program

Intentionally vulnerable Linux application for buffer overflow and RCE development practice

NTPD remote DOS exploit and vulnerable container

SQL Injection in Java

A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools