"Word". We heard that a lot of you have been having problems finding a truly dope vulnerable web application to wave your scanner at. As makers of the web's OG vulnerability scanner, we couldn't be letting that sorta situation stand.
So, Carlos Montoya has been busy - and he's got himself a shop. A Gin and Juice Shop, to be precise. And we want you to knock it over.
Montoya has outdone himself this time.
Look at these jokers.
Naturally, Carlos being Carlos, Gin and Juice Shop is also riddled with serious vulnerabilities. You'll find everything from classics like XSS and SQLi, to tricky external service interactions (using OAST testing).
The easiest way to find this stuff is to fire up a scanner. And Burp Scanner, being the OG that it is, will rip through sites like this.
Burp Scanner (seen here in Burp Suite Professional) will find a whole bunch of vulnerabilities in Gin and Juice Shop, for real.
You can find Burp Scanner in either Burp Suite Professional or Burp Suite Enterprise Edition - just paste in the URL
https://ginandjuice.shop/ , pour yourself a drink, and off you go.
If you're new to Burp Scanner, then check out our guides, below. Now go get scanning - and don't forget to let us know what you think. Peace.