OWASP (Broken Web Applications Project) is a group of vulnerable Open Web application security projects, distributed on VMware format virtual machines, containing almost all types of vulnerabilities, such as: SQL injection, XSS** *and many more. It is continuously supported by a non-profit organization-OWASP Foundation, and can be downloaded and used for free.
OWASP official website: https://www.owasp.org
OWASP China official website: http://www.owasp.org.cn/
Directly download the configured OWASP_VM_1.2 compressed file, select the current latest version 1.2 to download, download link
There are three formats of compressed files, it is recommended to choose the third download in .7z format, which can save download time
Unzip the downloaded OWASP compressed package, open the VMware virtual machine software, find the path of the unzipped folder, select the .vmx file of OWASP and open it with VMware
After opening, use the default configuration of the virtual machine to view the login user name and password. The default user name is root and the default password is owaspbwa
Network mode is recommended to use " host only " mode or " NAT " mode
Select to open this virtual machine, enter the user name and password to enter the software, the password is not visible by default
Enter the OWASP IP address in the browser to use it
Original link: https://blog.csdn.net/weixin_43583637/article/details/94627052