OWASP AspGoat

AspGoatā€™s purpose is to provide an intentionally vulnerable ASP.NET Core web application that helps developers and security professionals learn, practice, and teach application security. It bridges the gap between exploitation and remediation by offering hands-on labs aligned with the OWASP Top 10 and beyond.

What is AspGoat

AspGoat is an intentionally vulnerable ASP.NET Core Web Application for learning and practicing web application security. It includes the OWASP Top 10 and beyond, providing hands-on Application Security challenges. Bonus topics / Labs will be included soon!!

Example

1. Solve the Lab



2. Find the vulnerability in the source code



3. Replace it with the secure code

Watch Star