i decited to run juice-shop, DVWA, OWASP webGoat, i create nodejs app for include all these in one place,
wecan use manually one by one like
bash
docker run -p 127.0.0.1:3000:3000 bkimminich/juice-shop
bash
docker run -p 127.0.0.1:8080:80 vulnerables/web-dvwa
bash
docker run -p 127.0.0.1:8080:8080 -p 127.0.0.1:9090:9090 webgoat/webgoat
but i create nodejs web, we can install all quickly , and tracing our progress
and this is file structure of our project
xss-learning-portal/
├─ package.json
├─ server.js
├─ docker-compose.yml
├─ data/
│ └─ progress.json # created automatically on first save
└─ public/
├─ index.html # Tailwind CDN, dashboard UI
├─ app.js # client-side logic for progress tracker
└─ favicon.ico # optional
i will embed our project repository you can just clone and use it
github link here
install start portal
bash
cd xss-learning-portal
npm install
npm run start
Portal at http://127.0.0.1:4000
open seperate terminal and start vuln labs locally
bash
docker compose up -d
Juice Shop: http://127.0.0.1:3000
DVWA: http://127.0.0.1:8081
WebGoat: http://127.0.0.1:8082
ya we got it
and our vulnerable apps are
owasp juiceshop
DVWA
Lets practice the XSS……
thank you for reading my blog, recently i start sharing blogs , i will imprve my blog post in future blogs
Leave a Reply