Skip to content
@juice-shop

OWASP Juice Shop

Insecure web application for security trainings, awareness demos, CTFs and as a guinea pig for security tools
README.md

Juice Shop Banner

OWASP Juice Shop is probably the most modern and sophisticated insecure web application! It can be used in security trainings, awareness demos, CTFs and as a guinea pig for security tools! Juice Shop encompasses vulnerabilities from the entire OWASP Top Ten along with many other security flaws found in real-world applications!

OWASP Flagship CII Best Practices Contributor Covenant Twitter Follow Subreddit subscribers

OWASP Juice Shop and any contributions are Copyright © by Bjoern Kimminich & the OWASP Juice Shop contributors 2014-2024.

Pinned Loading

  1. juice-shop juice-shop Public

    OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

    TypeScript 10.9k 11.9k

  2. multi-juicer multi-juicer Public

    Host and manage multiple Juice Shop instances for security trainings and Capture The Flags

    Go 282 142

  3. pwning-juice-shop pwning-juice-shop Public

    Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"

    Handlebars 225 143

  4. juice-shop-ctf juice-shop-ctf Public

    Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF

    JavaScript 417 124

  5. juice-shop-tutorials juice-shop-tutorials Public

    Official OWASP Juice Shop tutorials on UI customization and system integration

    9 8

Repositories

Showing 10 of 12 repositories
  • juice-shop Public

    OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

    juice-shop/juice-shop’s past year of commit activity
    TypeScript 10,899 MIT 11,907 9 (5 issues need help) 3 Updated Mar 4, 2025
  • multi-juicer Public

    Host and manage multiple Juice Shop instances for security trainings and Capture The Flags

    juice-shop/multi-juicer’s past year of commit activity
    Go 282 Apache-2.0 142 14 (9 issues need help) 0 Updated Mar 4, 2025
  • juicy-statistics Public

    Scripts to collect statistics about OWASP Juice Shop

    juice-shop/juicy-statistics’s past year of commit activity
    JavaScript 3 MIT 10 3 (2 issues need help) 1 Updated Mar 4, 2025
  • juicy-coupon-bot Public

    Coupon code generator and distribution bot for OWASP Juice Shop

    juice-shop/juicy-coupon-bot’s past year of commit activity
    JavaScript 7 MIT 12 1 14 Updated Mar 1, 2025
  • pwning-juice-shop Public

    Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"

    juice-shop/pwning-juice-shop’s past year of commit activity
    Handlebars 225 143 2 (1 issue needs help) 2 Updated Feb 26, 2025
  • juice-shop-ctf Public

    Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF

    juice-shop/juice-shop-ctf’s past year of commit activity
    JavaScript 417 MIT 124 0 1 Updated Feb 23, 2025
  • www-project-juice-shop Public Forked from OWASP/www-project-juice-shop

    OWASP Foundation Web Respository

    juice-shop/www-project-juice-shop’s past year of commit activity
    HTML 0 155 0 0 Updated Nov 3, 2024
  • juice-shop-tutorials Public

    Official OWASP Juice Shop tutorials on UI customization and system integration

    juice-shop/juice-shop-tutorials’s past year of commit activity
    9 8 0 0 Updated Oct 7, 2024
  • shake-logger Public

    This projects provides a logger and a connected harlem shake js.

    juice-shop/shake-logger’s past year of commit activity
    CSS 19 6 0 0 Updated May 17, 2024
  • .github Public
    juice-shop/.github’s past year of commit activity
    0 1 0 0 Updated Mar 20, 2024
View all repositories