Skip to content
/ vapi Public

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

License

GPL-3.0 license
1.2k stars 314 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

roottusk/vapi

2 Branches5 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

roottuskroottusk
Update README.md
Sep 10, 2020
143c2c5 · Sep 10, 2020

History

13 Commits
.github
.github
Sep 6, 2020
vapi
vapi
Sep 6, 2020
LICENSE
LICENSE
Sep 6, 2020
README.md
README.md
Sep 10, 2020
vAPI.postman_collection.json
vAPI.postman_collection.json
Sep 6, 2020
vapi.sql
vapi.sql
Sep 6, 2020

Repository files navigation

vAPI

Version PHP

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable PHP Interface that demonstrates OWASP API Top 10 in the means of Exercises.

Requirements

  • Apache Server
  • MySQL
  • PostMan
  • MITM Proxy

Installation

Copying the Code

cd <your-hosting-directory>
git clone https://github.com/roottusk/vapi.git

Setting Up Postman

Import vAPI.postman_collection.json in Postman

Setting up the Database

Import vapi.sql into MySQL Database

Configure the DB Credentials in the vapi/db/var.php

Usage

Browse localhost/vapi for Documentation

About

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

Topics

api docker php cors owasp postman exercises bugbounty appsec hacktoberfest vulnerable-application owasp-top-10 owasp-top-ten appsec-tutorials apitop10 hacktoberfest-accepted

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1.2k stars

Watchers

20 watching

Forks

314 forks
Report repository

Releases 5

vAPI 1.3 Latest
Nov 27, 2022
+ 4 releases

Sponsor this project

Packages

No packages published

Contributors 8

Languages