Skip to content
/ play-webgoat Public

A vulnerable Play application for attackers.

License

CC0-1.0 license
18 stars 77 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

playframework/play-webgoat

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

187 Commits
.github
.github
 
 
app
app
 
 
conf
conf
 
 
project
project
 
 
public
public
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
build.sbt
build.sbt
 
 

Repository files navigation

play-webgoat

Twitter Follow Discord GitHub Discussions StackOverflow YouTube Twitch Status OpenCollective

Build Status Repository size Scala Steward badge Mergify Status

A vulnerable Play application for attackers.

This application stays clear of the Twirl template engine for the most part, and shows where unvalidated input from the client can be improperly trusted by the application and included in the response.

Running

sbt run

Then go to http://localhost:9000.

Scala versions

Cross-building to Scala 2.13 and 3 is supported.

About

A vulnerable Play application for attackers.

Topics

sample jvm example sample-app webapp example-project playframework

Resources

Readme

License

CC0-1.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

18 stars

Watchers

10 watching

Forks

77 forks
Report repository

Sponsor this project

  •  
Learn more about GitHub Sponsors

Contributors 13

Languages