Vulnerable Application Lab

The vulnerable application lab is an environment for users to learn ethical penetration testing. If you don’t have the know-how or resources to host your own, use us! Leave a comment below if you have any applications you would like us to add.

Vuln Lab Info

• Applications reset every hour, on the hour. If an application is messed up, wait for a reset.
• Internet access is disabled on the vuln lab subnet.

How to Access

Please login to the TH dashboard and request a VPN file to access the lab. Then access the vulnerable applications with the IP addresses listed below.

Current Labs

• VulnerableApp-Facade - 10.100.99.10
• Damn Vulnerable Web Application (DVWA) - 10.100.99.11
  • Username: admin
  • Password: password