This is a vulnerable container image that can be used for the Red Team / Blue Team training modules.

Red teamers can target this app to identify vulnerabilities and exploit them.

Blue teamers can practice defending the app with mitigating security controls.

The container image contains two vulnerable service ports. One is a well known CVE, the other is an unknown common OWASP top 10 issue type.

Take a look in buildAndRun.sh