Skip to content

Testing applications

The following test applications are available for scanning:

URL Description
http://combined.stands.appsecuritytesting.fun SQL injection vulnerability stand
http://simple-php.stands.appsecuritytesting.fun A stand for testing bruteforce attacks
http://xxe-shop.stands.appsecuritytesting.fun XXE vulnerability stand
http://java-deserialize.stands.appsecuritytesting.fun A stand with deserialization vulnerabilities in Java
http://juiceshop.stands.appsecuritytesting.fun OWASP Juice-Shop
http://bricks.stands.appsecuritytesting.fun OWASP Bricks
http://vampi.stands.appsecuritytesting.fun VAmPI — vulnerable API (OpenAPI specification)