new entries on Deliberately vulnerable APIs

2025-01-20 11:21:34 -05:00 · 2022-04-23 00:50:46 +01:00 · 2022-04-23 00:50:46 +01:00 · 455daf8903
commit 455daf8903
parent 2194271c13
1 changed files with 2 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -86,8 +86,10 @@
 | [dvws-node](https://github.com/snoopysecurity/dvws-node) | Damn Vulnerable Web Service is a vulnerable web service/API/application that we can use to learn webservices/API vulnerabilities. |
 | [Generic-University](https://github.com/InsiderPhD/Generic-University) | Vulnerable API with Laravel App |
 | [Pixi](https://github.com/DevSlop/Pixi) | The Pixi module is a MEAN Stack web app with wildly insecure APIs! |
+| [REST API Goat](https://github.com/optiv/rest-api-goat) | This is a "Goat" project so you can get familiar with REST API testing. |
 | [VAmPI](https://github.com/erev0s/VAmPI)| Vulnerable REST API with OWASP top 10 vulnerabilities for APIs |
 | [vAPI](https://github.com/roottusk/vapi)| vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises. |
+| [vulnerable-graphql-api](https://github.com/CarveSystems/vulnerable-graphql-api) | A very vulnerable implementation of a GraphQL API. |
 | [Websheep](https://github.com/marmicode/websheep) | Websheep is an app based on a willingly vulnerable ReSTful APIs. |

 ## Design, Architecture, Development