Friday, March 8, 2013

Damn Vulnerable Web Application - Learn & Practice Web Application Hacking

Hello friends,today post very helpful for that person who want to do practice for make his hacking too good. Today I am going to share with you an vulnerable application for learn and Practice web application hacking.


Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment. It is a best platform to practice web application hacking and security.

Using this application, You can practice the following existing vulnerabilities:

SQL Injection
XSS (Cross Site Scripting)
LFI (Local File Inclusion)
RFI (Remote File Inclusion)
Command Execution
Upload Script
Login Brute Force   

Warning : But before testing, do not upload it to your hosting provider’s public html folder or any working web server as it will be hacked because this application is damn vulnerable. It’s recommend that you download and install XAMP or WAMP in your machine and practice in local-host.


Now Download Below Write Tools :

Download:  WAMP  Or   Download:  XAMP

After install XAMP or WAMP. Go to C: Drive and Open folder XAMPP or WAMP. where you see a folder which name "htdocs" (in XAMP) or "www" (in WAMP) , enter in the htdocs and Delete all Files On htdocs or www Folder.

Now Extract the DVWA folder under htdocs or www folder. after extracting Start xamp or wamp server. Now Open your any browser and type IP   "" when you do it then Index open where a file present which name dvwa , click on that , see below pic..

Now click on  "Click here to setup the database."  to create database for dvwa. see below pic..

Then a page open which say about DataBase Setup , here you see a option given in which write "Create/Reset Database" , click on that , see below pic..

When all things complete then a Login page open where it ask Username and Password so enter Username is "admin"  and Password is "password" , see below pic...

Now Your Application is ready for works, all options for attacks test given in left side of page, See below pic..    

Enjoy Damn Vulnerable Web Application, and make perfect yourself.

If you like this post then kindly Share with your friends and groups and hit like on InvisibleHackers Official or

Connect With us on Facebook.

  Add me in your Google Plus Circles

Thank You For Visiting.....

Written by

Hello, My name is Ankit Bhandari You can visit and Learn Ethical Hacking from my blog. But all these hacking tricks only for educational purpose. Me and My Blog will not responsible for any wrong use of this. Enjoy it but never miss use it.


Post a Comment


© 2014 Invisible Hackers. All rights Reserved. Designed by InvisibleHackers