WebGoat - a vulnerable web application from OWASP for learning pentesting/hacking

WebGoat is a project created by OWASP that simulates a web application focused on education regarding application security. It is an interactive platform that allows users to learn through hands-on experience. Participants can explore various vulnerabilities and get to know the best security practices available. The project is incredibly useful for both beginners and experienced IT security professionals. WebGoat can be deployed locally, allowing for individual testing and learning in a comfortable environment. In addition to documentation, the project offers a set of exercises that help users understand the threats associated with web applications, such as SQL injection and XSS.