Offensive Security Local Lab Manager
KrestonLab is an interactive tool designed to simplify the deployment and management of vulnerable applications for penetration testing, web security training, and hands-on cybersecurity practice using Docker.
- Modern interactive terminal interface (TUI)
- Container status dashboard
- Automatic Docker image installation
- Start / Stop / Remove laboratory environments
- Cross-platform (Windows, Linux, and macOS)
- Docker-based architecture
- Designed for penetration testing and AppSec training
- Easy lab expansion through a centralized configuration file
- DVWA (Damn Vulnerable Web Application)
- OWASP Mutillidae II
- OWASP WebGoat
- bWAPP
- OWASP Juice Shop
- OWASP NodeGoat
- DVGA (Damn Vulnerable GraphQL Application)
- Python 3.8+
- Docker installed and running
⚠️ It is recommended to install KrestonLab inside a Python virtual environment to keep dependencies isolated and maintain a clean development setup.
git clone https://github.com/rsviana/krestonlab.git
cd krestonlab
pip install -r requirements.txt
python main.pyThe goal of KrestonLab is to provide a simple and centralized way to deploy vulnerable applications locally, allowing students, researchers, and security professionals to practice offensive security techniques in a safe and controlled environment.
This project is intended exclusively for educational purposes and security research in controlled environments.
Do not expose these applications to the public internet.
Rodrigo Viana (Krest0n)
Website: http://rodrigoviana.dev.br
