Pentest Tools d

Published on January 10th, 2017 | Post Views: 2,473  HitsPost Views


Damn Vulnerable Web Sockets: DVWS

Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication. The flow of the application is similar to DVWA. You will find more vulnerabilities than the ones listed in the application.



In the hosts file of your attacker machine create an entry for dvws.local to point at the IP address hosting the DVWS application.

Location of hosts file:

Windows: C:\windows\System32\drivers\etc\hosts

Linux: /etc/hosts

Sample entry for hosts file:         dvws.local


The application requires the following:


Setting up DVWS

Set the MySQL hostname, username, password and an existing database name in the includes/connect-db.php file then go to Setup to finish setting up DVWS.


Running DVWS

On the host running this application, run the following command from DVWS directory: php ws-socket.php

Leave a Reply

Back to Top ↑