DVTA - Damn Vulnerable Thick Client Application

June 21, 2026 ยท View on GitHub

Author: Suryaprakash Nalluri (SecVulture)
Current maintained version: https://github.com/nddmars/dvta
Community fork: https://github.com/srini0x00/dvta


DVTA is a Vulnerable Thick Client Application developed in C# .NET

Some of the vulnerabilities covered in this Application:

  • Insecure local data storage
  • Insecure logging
  • Weak cryptography
  • Lack of code obfuscation
  • Exposed decryption logic
  • SQL Injection
  • CSV Injection
  • Sensitive data in memory
  • DLL Hijacking
  • Clear text data in transit

Requires .NET version 4.5

More Documentation Coming soon!