a vulnerable Express application

Vulnerable Java based Web Application

Damn Vulnerable NodeJS Application

A deilberately vulnerable angular app for educational purposes

A deliberately vulnerable js app made with reactjs. For educational purposes.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Super vulnerable todo list application

The JavaScript and API powered WordPress.com

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

A free and open-source headless CMS

Node.js Production Process Manager with a built-in Load Balancer.

Vizualize song frequencies on canvas in the browser

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

☕️ simple, flexible, fun javascript test framework for node.js & the browser

A CMS framework for Node.js that supports in-context editing, schema-driven content types, flexible widgets, and much more. Hint: start with the docs and use apostrophe-cli.

Fast, flexible, and lean implementation of core jQuery designed specifically for the server.

Async utilities for node and the browser

Cloudinary NPM for node.js integration

A package manager for the web

A test data tunnelling solution

GraphicsMagick for node

Manages a pride of Gradle modules

WebGoat 8.0

A deliberately vulnerable social network

The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.