Analyzed
1 day
ago.
based on code collected
3 days
ago.
Project Summary
OWASP Juice Shop is probably the most modern and sophisticated insecure web application! It can be used in security trainings, awareness demos, CTFs and as a guinea pig for security tools! Juice Shop encompasses vulnerabilities from the entire OWASP Top Ten along with many other security flaws found in real-world applications!
In a Nutshell, OWASP Juice Shop...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a very large development team
with increasing Y-O-Y commits -
...
took an estimated 20 years of effort (COCOMO model)
starting with its first commit in September, 2014
ending with its most recent commit 2 days ago
MIT License
Permitted
Commercial Use
Modify
Distribute
Sub-License
Private Use
Forbidden
Hold Liable
Required
Include Copyright
Include License
These details are provided for information only. No information here is legal advice and should not be used as such.
Project Security
Vulnerabilities per Version ( last 10 releases )
There are no reported vulnerabilities
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
in 2016, 47% of companies did not have formal process in place to track OS code
-
...
anyone with an Open Hub account can update a project's tags
-
...
there are over 3,000 projects on the Open Hub with security vulnerabilities reported against them
-
...
you can subscribe to e-mail newsletters to receive update from the Open Hub blog
30 Day SummarySep 1 2025 — Oct 1 2025
|
12 Month SummaryOct 1 2024 — Oct 1 2025
|
