Examples of application vulnerabilities hosted in a simple Docker container. The container currently runs Flask so example vulnerabilities can be written in Python.
- Related blog post: https://www.denimgroup.com/resources/blog/2019/05/mime-sniffing-in-browsers-and-the-security-implications/
- URL in container to demonstrate the vulnerability: http://localhost:5000/vulnerabilities/mime-sniffing/
Clone the repository and change into its directory via:
git clone https://github.com/denimgroup/denimgroup-vulnerability-examples.git
cd denimgroup-vulnerability-examples/Build via:
docker build -t denimgroup-vulnerability-examples:latest .Run via:
docker run -p 5000:5000 denimgroup-vulnerability-examples