The technical ecosystem is changing – APIs and Web Services are often underprotected.


With Pixi, understand common vulnerabilities in web app and services.

The intent is to test modern web applications and API’s for security issues and how to write more secure API’s in the future.


Pixi consists of vulnerable web services, users can exploit several of Pixi’s vulnerabilities so they can learn how to do better when they create their own web services and other types of APIs.

Pixi is available in several Docker containers and consists of a vulnerable web app and API services.