Skip to content
This repository has been archived by the owner on Jan 19, 2025. It is now read-only.

Immunity-IAST/vuln_django-insecure

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
insecure
insecure
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Simple Django application with a number of built-in security vulnerabilities

Corresponding article with examples and explanation: Stay paranoid and trust no one. Overview of common security vulnerabilities in web applications

Some of them are detected with bandit

Run it like this:

bandit -r ./insecure/security

To start the server:

python manage.py runserver

Contains examples of threats:

  • SQL injection

  • Command injection

  • Insecure deserialization (unsafe use of Python pickle)

  • Cross-site scripting (XSS)

About

Example of an insecure Django application

lchsk.com/stay-paranoid-and-trust-no-one-overview-of-common-security-vulnerabilities-in-web-applications.html

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%