Skip to content
@juice-shop

OWASP Juice Shop

Insecure web application for security trainings, awareness demos, CTFs and as a guinea pig for security tools

Juice Shop Banner

OWASP Juice Shop is probably the most modern and sophisticated insecure web application! It can be used in security trainings, awareness demos, CTFs and as a guinea pig for security tools! Juice Shop encompasses vulnerabilities from the entire OWASP Top Ten along with many other security flaws found in real-world applications!

OWASP Flagship CII Best Practices Contributor Covenant Twitter Follow Subreddit subscribers

OWASP Juice Shop and any contributions are Copyright © by Bjoern Kimminich & the OWASP Juice Shop contributors 2014-2024.

Pinned Loading

  1. juice-shop Public

    OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

    TypeScript 10.9k 11.9k

  2. multi-juicer Public

    Host and manage multiple Juice Shop instances for security trainings and Capture The Flags

    Go 282 142

  3. pwning-juice-shop Public

    Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"

    Handlebars 225 143

  4. juice-shop-ctf Public

    Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF

    JavaScript 417 124

  5. juice-shop-tutorials Public

    Official OWASP Juice Shop tutorials on UI customization and system integration

    9 8

Repositories

Showing 10 of 12 repositories
  • juicy-statistics Public

    Scripts to collect statistics about OWASP Juice Shop

    JavaScript 3 MIT 10 3 (2 issues need help) 1 Updated Mar 7, 2025
  • juice-shop Public

    OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

    TypeScript 10,911 MIT 11,936 9 (5 issues need help) 2 Updated Mar 6, 2025
  • multi-juicer Public

    Host and manage multiple Juice Shop instances for security trainings and Capture The Flags

    Go 282 Apache-2.0 142 14 (9 issues need help) 0 Updated Mar 6, 2025
  • pwning-juice-shop Public

    Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"

    Handlebars 225 143 2 (1 issue needs help) 2 Updated Mar 5, 2025
  • juicy-coupon-bot Public

    Coupon code generator and distribution bot for OWASP Juice Shop

    JavaScript 7 MIT 12 1 14 Updated Mar 1, 2025
  • juice-shop-ctf Public

    Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF

    JavaScript 417 MIT 124 0 1 Updated Feb 23, 2025
  • www-project-juice-shop Public Forked from OWASP/www-project-juice-shop

    OWASP Foundation Web Respository

    HTML 0 157 0 0 Updated Nov 4, 2024
  • juice-shop-tutorials Public

    Official OWASP Juice Shop tutorials on UI customization and system integration

    9 8 0 0 Updated Oct 7, 2024
  • shake-logger Public

    This projects provides a logger and a connected harlem shake js.

    CSS 19 6 0 0 Updated May 17, 2024
  • .github Public
    0 1 0 0 Updated Mar 20, 2024