bts pentesting lab online with Winfy

We have hosted the application bts pentesting lab in order to run this application in our online workstations with Wine or directly.

Quick description about bts pentesting lab:

BTS PenTesting Lab is an open source vulnerable web application, created by Cyber Security & Privacy Foundation ( It can be used to learn about many different types of web application vulnerabilities.

Currently, the app contains the following types of vulnerabilities:
*SQL Injection
*XSS(includes Flash Based xss)
*File Inclusion
* Code Execution
*Insecure Direct Object Reference
*Unrestricted File Upload vulnerability
*Open URL Redirection
*Server Side Includes(SSI) Injection
and more.

Java version of this application can be found here:
https: //

  • Has plenty of latest web application vulnerabilities
  • Easy to Install
  • It will help you to learn web application hacking
  • A real vulnerable web application
  • You can use any pentesting/hacking tools to test the vulnerability
  • Contains challenges that will improve your bug finding skills
  • Access the Admin panel at "/btslab/admin/". The default Admin Login Credentials: username 'admin' and password 'password'

Audience: Information Technology, Education, Security Professionals, Security.
User interface: Web-based.
Programming Language: PHP.


©2024. Winfy. All Rights Reserved.

By OD Group OU – Registry code: 1609791 -VAT number: EE102345621.