Hacker, Researcher and Author.

Learn Website Hacking And Security With DVWA Tools

Lots of readers often ask me How can I be good at website hacking and web application security, The thing is that even if you have an idea of how some popular website application attack work but still you need a safe environment to practice what you have learned because you are not allowed to access any website even for testing purposes unless and until you are not authorized to do that, This is where Damn vulnerable web app(DVWA) comes into play
Basically Damn vulnerable web app(DVWA) PHP/MySQL web app which is Damn vulnerable, DVWA web app allows you to learn and practice web application attacks in a safe environment, It's latest version is DVWA 1.7.

Web Hacking and Security related articles on RHA


  • SQL Injection
  • XSS (Cross Site Scripting)
  • LFI (Local File Inclusion)
  • RFI (Remote File Inclusion)
  • Command Execution
  • Upload Script
  • Login Brute Force
  • Blind SQL Injection 
And much more.

Official warning

It should come as no shock..but this application is damn vulnerable! Do not upload it to your hosting provider’s public html folder or any working web server as it will be hacked. It’s recommend that you download and install XAMP onto a local machine inside your LAN which is used solely for testing.

Installation Guide

You can download DVWA 1.0.4 here, below I am posting a video which will tell you step by step how to install DVWA tools on your computer and practice website Hacking


  1. Wow rafay I am really Impressed with your skills...

  2. bro Rafay i got same article in following website....

    wish 1 is published 1st and which is unique>??

    cn u mail me?

    or visit to my blog n contact me tnXx

  3. @Gazaly
    The site is a copycat, I will try to take it down very soon..

  4. Hi Rafay I don't think its a copy since everyone including me practice on DVWA. Use of DVWA is very common and it is also part of Samurai Application Testing Framework. No doubt even I'll recommend my readers to practice on DVWA.

  5. All ur posts have been copied by this website http://www.keshavhackingarticles.tk

    but how do u take down ? by copyrigt issues ?
    can tell how u do that

  6. @Mrcracker
    It's easy i will file a DMCA complaint and they will take down the whole blog.

  7. But you will have to pay some money??????

  8. rafay another guy has copied many of Ur posts , but this won was really interesting

    the funny thing about this that he selling ur products he doent even know what the !@@ he selling lot of jokers out there on the net !!!!!!!ha hhahha ............!!!!!!!

  9. I read your book Introduction to Malware keyloggers and Rats. you have mention Win-spy software in that book i download this software but when i start it my antivirus gives me warning and shows two options 1.Move to vault and 2. Allow access
    Kindly tell me could it damage my computer or not? i am using avg antivirus

  10. hey rafay ....
    i want to run my own blog so just i want to take permit from u ...bro..
    to copy some articles frm ur blog bec. it is vry impresive..
    thank u..

  11. @mrcracker

    where did you find that site? my firewall went haywire, we're up to 200 hits in the last few minutes


  12. how does this thing work?

  13. Your thiS poSt haS been copied viSit the link::::::::::


  14. I know dear there are lots of people who copy my posts, However I don't have time to report each and every one of them.

  15. hi rafay can u please tell me the latest method to hack any website without software ?
    waiting for your reply .....


© 2016 All Rights Reserved by RHA Info Sec. Top

Contact Form


Email *

Message *

Powered by Blogger.