Skip to main content
Room Banner
Back to all walkthroughs
Room Icon

OWASP Mutillidae II

Mutillidae II is a free, open source, deliberately vulnerable web-application providing a target for web-security enthusiast.

easy

45 min

11,162

User profile photo.

To access material, start machines and answer questions login.

Set up your virtual environment

To successfully complete this room, you'll need to set up your virtual environment. This involves starting both your AttackBox (if you're not using your VPN) and Target Machines, ensuring you're equipped with the necessary tools and access to tackle the challenges ahead.
Attacker machine
Status:Off
Lab machine
Status:Off


Mutillidae II (opens in new tab)

Developed and maintained by Jeremy "webpwnized" Druin (opens in new tab)


Mutillidae II is a free, open-source, deliberately vulnerable web-application providing a target for a web-security enthusiast. OWAP Mutillidae II contains over 40 vulnerabilities and challenges over Top Ten 2007, 2010, 2013 and 2017.

You can use this resource via the following:

1. Deploy the application attached to this task and allow 5 minutes for it to deploy.

2. Connect to the TryHackMe network

3. Visit ://MACHINE_IP (opens in new tab) in your browser

4. Hack away


Please note that this resource is a playground, and as such, have no flags for you to submit on TryHackMe.


Answer the questions below
I've deployed the Instance