Note: This repo is moved to https://github.com/DarkRelay-Security-Labs/VWA
Vulnerable Windows Application for Pentesters.
Warning! You are about to install DarkRelay's Vulnerable Windows Application! Purpose of the application is to educate students on Windows Thick Client Pentesting. If you use this application for malicious means or if your server is compromised via an installation of this application,DarkRelay does not hold any responsibility! If you have more questions, please write to us https://www.darkrelay.com/get-started
https://www.darkrelay.com/post/thick-client-penetration-testing
DLL Hijacking
EXE Hijacking
Symlink Attacks
IFEO Injection
Unquoted Service Paths
Man In the Middle Attack
Weak Named Pipes
Weak Memory Protection
Stack Overflow
Absence of Digital Signatures
COM Hijacking
Process Injection
Heap Overflow
Install the msi as an Administrator
Windows 10 x64, Windows 2016 and 2019 x64
Microsoft Sysinternal Tools
Immunity Debugger
Symboliclink-testing-tools from Google
Echo Mirage
Regshot
Windows Attack Surface Analyzer
mingw compiler c++