Damn Vulnerable Web Application is a PHP/Mysql application which is developed for presenting the fundamental attack vectors (such as XSS, CSRF, SQL Injection)and creating an environment for users where cybersecurity practices could be made byletting users to exploit any vulnerabilities. I have benefited from this brilliant open source applicationseveral years ago, I can exactly point out that DVWA is essential for converting fundamental cybersecurity information to experience. There are several attack vectors available to test and each attack vector has 3 difficulty level (Easy, Normal, Hard). In every stage, the present codes are also available to be viewed so it is not for cybersecuritylearners only, also it is very essential for the developers when it comes to develop a secure application. PS: Needless to say, never ever build this app on any server since it really has massive vulnerabilities. Only install and build it on a local environment.