Applications, Hacking, Security Strategy, Threat Defense, Threat Research, Vulnerabilities, , , , , ,
Cyber Security Hacking

Legal Hacking Websites

Legal hacking websites to practice and learn.

Training your legal hacking cyber skills means also keeping your hacking skills up to date. To do this, you need an environment to practice in, legally and safely. Here is a list of websites you can visit and practice your cyber skills.

Arizona Cyber Warfare RangeThe ranges offer an excellent platform for you to learn computer network attack (CNA), computer network defense (CND), and digital forensics (DF). You can play any of these roles.
BodgeIt StoreThe BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
bWAPPbWAPP, or a buggy web application, is a free and open source deliberately insecure web application.
Commix testbedA collection of web pages, vulnerable to command injection flaws.
CryptOMGCryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
Damn Small Vulnerable WebDamn Small Vulnerable Web (DSVW) is a deliberately vulnerable web application written in under 100 lines of code, created for educational purposes. It supports the majority of (most popular) web application vulnerabilities together with appropriate attacks.
Damn Vulnerable Android AppDamn Vulnerable Android App (DVAA) is an Android application which contains intentional vulnerabilities.
Damn Vulnerable iOS AppDamn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable.
Damn Vulnerable LinuxDamn Vulnerable Linux (DVL) is everything a good Linux distribution isn’t. Its developers have spent hours stuffing it with broken, ill-configured, outdated, and exploitable software that makes it vulnerable to attacks.
Damn Vulnerable Router FirmwareThe goal of this project is to simulate a real-world environment to help people learn about other CPU architectures outside of the x86_64 space. This project will also help people get into discovering new things about hardware.
Damn Vulnerable Web ServicesDamn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real-world web service vulnerabilities.
Damn Vulnerable Web SocketsDamn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.
Damnvulnerable.meA deliberately vulnerable modern-day app with lots of DOM-related bugs.
DIVA AndroidDamn Insecure and vulnerable App for Android.
exploit.co.il Vulnerable Web Appexploit.co.il Vulnerable Web app designed as a learning platform to test various SQL injection Techniques.
Hack The BoxHack The Box is an online platform allowing you to test your penetration testing skills and exchange ideas and methodologies with other members of similar interests. In order to join you should solve an entry-level challenge.
Hack This SiteMore than just another hacker wargames site, Hack This Site is a living, breathing community with many active projects in development, with a vast selection of hacking articles and a huge forum where users can discuss hacking, network security, and just about everything.
HackazonA modern vulnerable web app.
HackxorHackxor is a web app hacking game where players must locate and exploit vulnerabilities to progress through the story. Think WebGoat but with a plot and a focus on realism&difficulty. Contains XSS, CSRF, SQLi, ReDoS, DOR, command injection, etc.
Morning CatchMorning Catch is a VMware virtual machine, similar to Metasploitable, to demonstrate and teach about targeted client-side attacks and post-exploitation.
MysteryTwister C3MysteryTwister C3 lets you solve crypto challenges, starting from the simple Caesar cipher all the way to modern AES, they have challenges for everyone.
OverthewireThe wargames offered by the OverTheWire community can help you to learn and practice security concepts in the form of fun-filled games.
SlaveHackSlavehack is a virtual hack simulation game. Great for starters, I’ve seen kids in elementary school playing this!
SQLzooTry your Hacking skills against this test system. It takes you through the exploit step-by-step.
VulnhubAn extensive collection of vulnerable VMs with user-created solutions.
XSS-gameIn this training program, you will learn to find and exploit XSS bugs. You’ll use this knowledge to confuse and infuriate your adversaries by preventing such bugs from happening in your applications.
Share Websitecyber

Related Posts: