DSVW

DSVW

817 Stars

Damn Small Vulnerable Web

stamparm
Vulnerable-labs
May 27, 2025
817 stars
View on GitHub
Share on:
X LinkedIn Facebook WhatsApp Telegram Reddit Email
Category
Vulnerable-labs
GitHub Stars
817
Project Added On
May 27, 2025
Contributors
5

README.md

View on GitHub

Sign

Damn Small Vulnerable Web Python 3.x License

Damn Small Vulnerable Web (DSVW) is a deliberately vulnerable web application written in under 100 lines of code, created for educational purposes. It supports majority of (most popular) web application vulnerabilities together with appropriate attacks.

XSS

Quick start

Run the following command: 

$ python3 dsvw.py 
Damn Small Vulnerable Web (DSVW) < 100 LoC (Lines of Code) #v0.2a
 by: Miroslav Stampar (@stamparm)

[i] running HTTP server at 'http://127.0.0.1:65412'...

and navigate your browser to http://127.0.0.1:65412/:

DSVW

Requirements

Python (3.x) is required for running this program. Items XML External Entity (local), XML External Entity (remote) and Blind XPath Injection (boolean) require installation of python-lxml (e.g. apt-get install python-lxml). Otherwise, those will be disabled.

To install lxml via pip, run the following command:

pip install -r requirements.txt

Tool Information

Author

stamparm

Project Added On

May 27, 2025

License

Open Source

Tags

security tool
View on GitHub

Related Tools

llm-sec

llm-sec

A hands-on learning platform for understanding and testing LLM security vulnerabilities

Stable
owasp-masvs

owasp-masvs

The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

Stable
IWA-Java

IWA-Java

Insecure Web + API application with example Fortify integrations into many DevSecOps and CICD platforms

Stable
View more Vulnerable-labs tools