We’re excited to share our new vulnerable web app – a brand-new resource for anyone looking to learn the art of ethical hacking and penetration testing.

Our new super secure site is anything but!

Instead, this hands-on, self-hosted vulnerable web app, has been designed as a challenge for beginners and junior pentesters.

North Green’s intentionally insecure web application will help you learn and practice essential pentesting skills, including:

  • Authentication Bypass
  • Creating High-Privilege Accounts
  • Cross-Site Scripting (XSS)
  • Session Hijacking
  • SQL Injection
  • Hidden Pages and Sensitive Data Exposure
  • Command Injection
  • Local File Inclusion (LFI)
  • Insecure Direct Object References (IDOR)

To complement the app, we’ve also created a comprehensive lab guide, complete with hands-on exercises, to walk you through the processes, step by step, and help you exploit all its vulnerabilities.

The app and accompanying lab guide are available from our GitHub repository.

Further resources and tutorials are available on our YouTube channel.