Repositories list

• snyk-crew

  Public
  A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure code reviews. Features com…

  HTML

  •

  MIT License

  •240•0•0•2•Updated Mar 19, 2026Mar 19, 2026

• vuln-bank-ghas-eval

  Public
  A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure code reviews. Features com…

  HTML

  •

  MIT License

  •240•0•0•1•Updated Mar 19, 2026Mar 19, 2026

• vuln-bank-semgrep

  Public
  A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure code reviews. Features com…

  HTML

  •

  MIT License

  •240•0•0•1•Updated Mar 19, 2026Mar 19, 2026

• mbianchidev-vuln-bank

  Public

  octodemo/mbianchidev-vuln-bank’s past year of commit activity
  A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure code reviews. Features com…

  Python

  •

  MIT License

  •240•0•0•4•Updated Mar 19, 2026Mar 19, 2026

• tailspin-toys

  Public
  Python

  •

  MIT License

  •2•0•2•10•Updated Mar 16, 2026Mar 16, 2026

• tf-acc-test-repo-act-runner-csnob

  Public
  0•0•0•0•Updated Mar 16, 2026Mar 16, 2026

• tf-acc-test-fork-update-blc03

  Public
  Initial description for forked repo

  Go

  •

  MIT License

  •939•0•0•0•Updated Mar 15, 2026Mar 15, 2026

• fourth-coffee

  Public
  TypeScript

  •0•0•19•12•Updated Mar 15, 2026Mar 15, 2026

• JPK-CopilotTraining

  Public
  repo for training labs/exercises/walk-throughs

  JavaScript

  •6•0•0•1•Updated Mar 10, 2026Mar 10, 2026

• yoshi-ghas

  Public

  octodemo/yoshi-ghas’s past year of commit activity
  WebGoat is a deliberately insecure application

  JavaScript

  •

  Other

  •7.5k•0•0•1•Updated Mar 10, 2026Mar 10, 2026

• octocat_supply-jubilant-fishstick

  Public

  octodemo/octocat_supply-jubilant-fishstick’s past year of commit activity
  TypeScript

  •1•1•17•14•Updated Mar 10, 2026Mar 10, 2026

• smoothie-juice

  Public
  Vulnerable application used for educational purposes

  githubgheautomation+ 4

  githubgheautomationcicdgithub-enterprise-cloudadvanced-securityghas

  TypeScript

  •

  MIT License

  •0•0•13•26•Updated Mar 3, 2026Mar 3, 2026

• hubber-lookup-agent

  Public

  octodemo/hubber-lookup-agent’s past year of commit activity
  TypeScript

  •

  MIT License

  •18•0•0•1•Updated Mar 1, 2026Mar 1, 2026

• dotnet-razor-pages-movie

  Public
  This is an ASP.net app demo example create by @tsviz

  C#

  •1•2•1•3•Updated Feb 15, 2026Feb 15, 2026

• octocat_supply

  Public template
  TypeScript

  •6•1•0•0•Updated Feb 10, 2026Feb 10, 2026

• OWASPWebGoatPHPDeere

  Public
  A deliberately vulnerable web application for learning web application security.

  PHP

  •

  Apache License 2.0

  •247•0•0•0•Updated Feb 5, 2026Feb 5, 2026

• java-springboot-demo

  Public
  This is a Java demo App created by @tsviz

  Java

  •

  Apache License 2.0

  •4•7•3•5•Updated Jan 26, 2026Jan 26, 2026

• im-agentic-workflow-01

  Public
  Agentic workflow demo repository with pirate-themed agents for competitive analysis and team activity research

  0•0•7•2•Updated Jan 22, 2026Jan 22, 2026

• brokencrystals

  Public
  CSS

  •0•0•1•41•Updated Jan 20, 2026Jan 20, 2026

• gei-demo

  Public
  Demo GitHub Enterprise Importer (GEI)

  migrationsgeimigration-scripts

  migrationsgeimigration-scripts

  Shell

  •

  MIT License

  •1•8•0•0•Updated Jan 15, 2026Jan 15, 2026

• hitech-ghcp-demo

  Public
  1•0•0•0•Updated Jan 15, 2026Jan 15, 2026

• ghas-policy-as-code

  Public
  JavaScript

  •

  Other

  •8•1•3•21•Updated Jan 1, 2026Jan 1, 2026

• nodejs-actions-demo

  Public
  JavaScript

  •0•0•0•1•Updated Dec 31, 2025Dec 31, 2025

• codeql-monorepo

  Public
  Codeql monorepo to do analysis individually.

  PHP

  •5•0•2•10•Updated Dec 19, 2025Dec 19, 2025

• Juice-Junction

  Public
  OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

  TypeScript

  •

  MIT License

  •17k•0•0•1•Updated Dec 16, 2025Dec 16, 2025

• Juice-Oasis

  Public
  OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

  TypeScript

  •

  MIT License

  •17k•0•0•2•Updated Dec 16, 2025Dec 16, 2025

• The-Juicy-Drop

  Public
  OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

  TypeScript

  •

  MIT License

  •17k•0•0•2•Updated Dec 16, 2025Dec 16, 2025

• Juice-Theory

  Public
  OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

  TypeScript

  •

  MIT License

  •17k•0•4•1•Updated Dec 16, 2025Dec 16, 2025

• Fresh-Juice-Bar

  Public
  OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

  TypeScript

  •

  MIT License

  •17k•0•3•3•Updated Dec 16, 2025Dec 16, 2025

• copilot-bad-actor-test

  Public
  testing

  0•0•1•0•Updated Dec 11, 2025Dec 11, 2025