OWASP Vicnum Project v-15 released.

Purpose: A flexible web app showing vulnerabilities such as cross site scripting, sql injections, and session management issues. Helpful to IT auditors honing web security skills and setting up ‘capture the flag’.

Main :
A lightweight flexible vulnerable web application written in PERL and PHP. It demonstrates common web application vulnerabilities such as cross site scripting and session management issues. Vicnum is helpful to IT auditors who need to hone web security skills and can also be used by those setting up ‘capture the flag’ exercises or by those who just want to have some fun with web assessments.

create database vicnum;
grant ALL on *.* to rool@localhost INDENTIFIED by ‘vicnum’ ;
create table guessnumresults (idnum int(4) NOT NULL auto_increment PRIMARY KEY, name char(100), guess int(3) ZEROFILL, count int(2), tod TIMESTAMP );
create table jottoresults (idnum int(4) NOT NULL auto_increment PRIMARY KEY, name char(100), guess char(5), count int(2), tod TIMESTAMP);
create table unionresults (idnum int(4) NOT NULL auto_increment PRIMARY KEY, name char(100), unionquery char(150), tod TIMESTAMP );

Download : vicnum15.tar (276.5 kB)
Find Other version |
Read more in here : https://www.owasp.org/index.php/Category:OWASP_Vicnum_Project