OSTE Vulnerable Web Application (OSTE VWA) is a purpose-built web application aimed at testing DAST (Dynamic Application Security Testing) tools and providing valuable experience to individuals interested in web cybersecurity. Developed using PHP and SQL, OSTE VWA contains a collection of deliberately vulnerable pages, including exploits like SQL injection (SQL), Cross-Site Scripting (XSS), and OS command injection. As we progress, we plan to incorporate additional vulnerabilities, broadening the application's educational scope.
Operating OSTE VWA is simple; first, you create a database named "OSTE" and then you can launch the application and explore its various functionalities, including examining the complete database.
It is crucial to emphasize that this application is intended solely for learning purposes. Users are expected to use it responsibly and strictly within ethical boundaries. We do not condone any misuse or unauthorized attempts to exploit vulnerabilities beyond educational purposes.
We hope you find value in using OSTE VWA to deepen your understanding of web security and enhance your cybersecurity skills. Happy learning!