JotPot Vulnerable Web Application

JotPot is a badly coded web application. It was coded in PHP/MySQL. JotPot's main goal is to help security enthusiasts to learn web application security.

JotPot consist of OWASP Top 10 and more.

Injection
|----HTML Injection (GET)
|----HTML Injection (POST)
|----iframe Injection
|----OS Command Injection Blind
|----OS Command Injection
|----PHP Code Injection
|----SQL Injection (GET)
|----SQL Injection (POST
|----SQL Injection - Search From ID (GET)
|----SQL Injection - Login Form
|----SQL Injection - Stored - User Agent
|----SQL Injection - Blind - Boolean Based
|----Server Site Template Injection (SSTI)
|----PHP Object Injection
Broken Authentication
|----Broken Authentication Captcha Bypass
|----Broken Authentication Insecure Login
|----Broken Authentication Password Attack

Sensitive Data Exposure

XML External Entities(XXE)
|----XXE - XML External Entities
|----XXE Out of Band
Broken Access Control
|----Remote & Local File Inclusion (RFI/LFI)
|----File Upload

Misconfiguration

Cross Site Scripting (XSS)
|----XSS - Cross Site Scripting - Reflected - JSON
|----XSS - Cross Site Scripting - Reflected - Login Form
|----XSS - Cross Site Scripting - Stored - Blog
|----XSS - Cross Site Scripting - Stored - User Agent

Insecure Deserialization
Componenets with Known Vulnerabilities
Insufficient Logging & Monitoring

Cross Site Reference Forgery(CSRF)
|----CSRF - Cross Site Reference Forgery - Change Password
|----CSRF - Cross Site Reference Forgery - Money Transfer
Insecure Direct Object Reference (IDOR)
|----Insecure Direct Object Reference (IDOR)

Installation for Linux


$ systemctl start apache2 or nginx
$ systemctl start mysql

Use the mysqladmin command to create a new database:
$ mysqladmin -u username -p create jotformDB

Lastly, with the new database created, use mysql to import the dump file we created into the new database.
$ mysql -u username -p jotformDB < /path/to/JotPot/database/jotpotDB.sql

$ mysql -u username -p
mysql> CREATE USER 'jotpot'@'localhost' identified with mysql_native_password by 'JotForm1-';
mysql> GRANT ALL PRIVILEGES ON *.* TO 'jotpot'@'localhost';
mysql> FLUSH PRIVILEGES;
mysql> exit;

$ systemctl restart mysql

Configuration PHP

file_uploads = on 
allow_url_fopen = on 
allow_url_include = on

## Credentials

The information will use to login JotPot.

username = jotform
password = okan

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
database		database
logs		logs
media		media
vendor		vendor
.DS_Store		.DS_Store
README.md		README.md
base.html		base.html
brokenauthentication_captcha_bypass.php		brokenauthentication_captcha_bypass.php
brokenauthentication_insecurelogin.php		brokenauthentication_insecurelogin.php
brokenauthentication_passwordattack.php		brokenauthentication_passwordattack.php
captainamerica.php		captainamerica.php
captcha.php		captcha.php
captcha_box.php		captcha_box.php
composer.json		composer.json
composer.lock		composer.lock
config.php		config.php
connection.php		connection.php
cross_site_search.php		cross_site_search.php
csrf_change_password.php		csrf_change_password.php
csrf_changepassword.html		csrf_changepassword.html
csrf_money.html		csrf_money.html
csrf_money_transfer.php		csrf_money_transfer.php
functions.php		functions.php
header.php		header.php
htmlinjection_get.php		htmlinjection_get.php
htmlinjection_post.php		htmlinjection_post.php
idor.php		idor.php
iframeinjection.php		iframeinjection.php
imageupload.php		imageupload.php
includer.php		includer.php
index.php		index.php
info.php		info.php
ironman.php		ironman.php
leftgrid.html		leftgrid.html
list_brokenaccesscontrol.php		list_brokenaccesscontrol.php
list_brokenauth.php		list_brokenauth.php
list_componenetswithknownvulnerabilities.php		list_componenetswithknownvulnerabilities.php
list_csrf.php		list_csrf.php
list_idor.php		list_idor.php
list_injection.php		list_injection.php
list_insecuredeserialization.php		list_insecuredeserialization.php
list_insufficientloggingmonitoring.php		list_insufficientloggingmonitoring.php
list_misconfiguration.php		list_misconfiguration.php
list_sensitivedataexposure.php		list_sensitivedataexposure.php
list_xss.php		list_xss.php
list_xxe.php		list_xxe.php
login.php		login.php
logout.php		logout.php
okan.php		okan.php
oscommandinjection.php		oscommandinjection.php
oscommandinjection_blind.php		oscommandinjection_blind.php
phpcodeinjection.php		phpcodeinjection.php
phpobjectinjection.php		phpobjectinjection.php
randGen.py		randGen.py
remote_local_file_inclusion_rfi_lfi.php		remote_local_file_inclusion_rfi_lfi.php
spiderman.php		spiderman.php
sqlinjection1_get.php		sqlinjection1_get.php
sqlinjection2_post.php		sqlinjection2_post.php
sqlinjection3_get_searchfromid.php		sqlinjection3_get_searchfromid.php
sqlinjection4_loginform.php		sqlinjection4_loginform.php
sqlinjection5_stored_useragent.php		sqlinjection5_stored_useragent.php
sqlinjection6_blind_booleanbased.php		sqlinjection6_blind_booleanbased.php
ssti.php		ssti.php
todolist.txt		todolist.txt
xss_reflected_json.php		xss_reflected_json.php
xss_reflected_loginform.php		xss_reflected_loginform.php
xss_stored_blog.php		xss_stored_blog.php
xss_stored_useragent.php		xss_stored_useragent.php
xxe3_outofband.php		xxe3_outofband.php
xxe_1.php		xxe_1.php
xxe_2.php		xxe_2.php

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

JotPot Vulnerable Web Application

Installation for Linux

Configuration PHP

GOOD LUCK HAVE FUN

About

Releases

Packages

Languages

HaaaToka/JotPot

Folders and files

Latest commit

History

Repository files navigation

JotPot Vulnerable Web Application

Installation for Linux

Configuration PHP

GOOD LUCK HAVE FUN

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages