PHPMailer < 5.2.18 Remote Code Execution exploit and vulnerable container

Shellshock exploit + vulnerable environment

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Docker image to exploit RCE, try for pentest methods and test container security solutions (trivy, falco and etc.)

漏洞靶场平台

Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container

Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container

NTPD remote DOS exploit and vulnerable container

docker-compose bringing up multiple vulnerable applications inside containers.

Sudo <= 1.8.14 Local Privilege Escalation and vulnerable container

This is a collection of vulnerable machines that can help you to learn hacking, pentesting and bug hunting. I know there are a lot of lists out there, but most of them are not updated regularly. So I decided to make on myself. Hope this will help you

Sudo 1.6.x <= 1.6.9p21 and 1.7.x <= 1.7.2p4 Local Privilege Escalation and vulnerable container

Some vulnerables docker webapps

Vulnerable Docker containers designed to simulate vulnerable services for enthusiasts looking to sharpen their skills in identifying, exploiting, and enumerating vulnerabilities in a controlled environment.

A TUI enviorment for vulnerable app containers.

Another vulnerable application for practicing web penetration testing.

Vulnerable REST based PHP webservice deployed in Docker