Pygoat

screenshot of Pygoat

Pygoat

intentionally vuln web Application Security in django

Overview:

PyGoat is an intentionally vulnerable web application built in Django that focuses on web application security. The project aims to provide a learning platform for developers to understand and address security vulnerabilities based on OWASP top ten. The roadmap of PyGoat includes creating intentionally vulnerable web applications in Django.

Features:

  • Intentionally Vulnerable Web Application: PyGoat is designed to have intentional vulnerabilities for users to identify and learn from.
  • OWASP Top Ten Focus: The vulnerabilities in PyGoat are based on the OWASP top ten list, helping users understand common security issues.
  • Multiple Installation Methods: PyGoat offers various installation methods, including Docker container setup and manual installation from sources.
  • Development Server Setup: Users can quickly set up a development server to start exploring the vulnerabilities.

From Sources:

  1. Clone the repository:
    git clone <repository_url>
    
  2. Install requirements and apps using installer file:
    bash installer.sh
    
  3. Apply migrations: