Vulnerable App FAQs

Question 1

What are the key features of Vulnerable App?

Accepted Answer

Key features include LLM-based decision logic, native execution of SQL and terminal commands, an auto-initializing SQLite database, simple JSON-RPC methods, and a design that is deliberately vulnerable.

Question 2

What are the system requirements for running Vulnerable App?

Accepted Answer

Vulnerable App requires Docker and Docker Compose. It also uses Ollama to run a local LLM. See the installation instructions for full details.

Question 3

What vulnerabilities can I test with Vulnerable App?

Accepted Answer

Vulnerable App is built to test SQL Injection (SQLi) and Remote Code Execution (RCE) vulnerabilities via FastAPI, JSON-RPC, and LLM-based decision logic.

Question 4

Is Vulnerable App safe to use in production?

Accepted Answer

NO! Vulnerable App is intentionally insecure and should ONLY be used in isolated environments, CTFs, or research labs. It executes raw SQL and system commands without authentication.

Question 5

What is Vulnerable App?

Accepted Answer

Vulnerable App is an intentionally insecure MCP (Model Context Protocol) application designed for security research and testing. It simulates vulnerabilities like SQL Injection and Remote Code Execution.

Vulnerable App

概要

主な機能

ユースケース