- HTB: Online platform with Penetration testing labs (Similar to OSCP labs)
- DVWA: Damn Vulnerable Web Application
- Kevgir: Multi Vulnerable Virtual Machine
- WebGoat A deliberately insecure Web Application
- Metasploitable 2 Metasploitable login is “msfadmin”; the password is also “msfadmin”.
- Metasploitable 3 Is a VM that is built from the ground up with a large amount of security vulnerabilities. It is intended to be used as a target for testing exploits with metasploit.