TSGoat: Vulnerable TypeScript Application

Introduction

TSGoat is an intentionally vulnerable application written in TypeScript to learn about security flaws.

Prerequisites

Node.js (tested on v12.18.1)

Quick Start

Download and install dependencies

git clone https://github.com/jharper-sec/TSGoat.git
cd TSGoat
npm install

Compile TypeScript application

npm run tsc

Start application

npm start

or to start with Contrast agent

npm run contrast

Navigate to http://localhost:3000 to view the application

Run with Docker

Build container image

docker-compose build

Run with docker-compose

docker-compose up

Currently implemented vulnerabilities

SQL Injection
Reflected XSS

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
.github/workflows		.github/workflows
src		src
views		views
.dockerignore		.dockerignore
.gitignore		.gitignore
Dockerfile-TSGoat		Dockerfile-TSGoat
LICENSE		LICENSE
README.md		README.md
docker-compose.yml		docker-compose.yml
package-lock.json		package-lock.json
package.json		package.json
tsconfig.json		tsconfig.json
user_seed_data.json		user_seed_data.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

TSGoat: Vulnerable TypeScript Application

Introduction

Prerequisites

Quick Start

Run with Docker

Currently implemented vulnerabilities

About

Releases

Packages

Contributors 3

Languages

License

jharper-sec/TSGoat

Folders and files

Latest commit

History

Repository files navigation

TSGoat: Vulnerable TypeScript Application

Introduction

Prerequisites

Quick Start

Run with Docker

Currently implemented vulnerabilities

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 3

Languages

Packages