How to Install DVWA on Windows | Step-by-Step Beginner’s Guide
How to Install DVWA on Windows | Step-by-Step Beginner’s Guide
Are you ready to practice web application security in a safe, controlled environment? In this video, I’ll show you *how to install DVWA (Damn Vulnerable Web Application) on Windows* step by step. DVWA is one of the most popular tools for learning *web app security, penetration testing, and ethical hacking* — and it’s perfect for beginners!
By the end of this tutorial, you will have a fully functional DVWA setup on your Windows machine, ready for practicing **SQL Injection, XSS, Command Injection, CSRF, and other web vulnerabilities**.
*What You’ll Learn in This Video:*
1. How to install *XAMPP* (Apache, MySQL, PHP) on Windows.
2. How to download and configure **DVWA**.
3. How to set up the *MySQL database* for DVWA.
4. How to adjust *PHP settings* for DVWA to work properly.
5. How to log in and start testing safely on your local machine.
*Why Use DVWA?*
DVWA is intentionally vulnerable, making it a safe playground for:
Beginners learning *ethical hacking*
Security enthusiasts practicing *web vulnerabilities*
Students preparing for certifications like *CEH, OSCP, or CompTIA Security+*
*Prerequisites*
Before starting, make sure you have:
A Windows PC (Windows 10 or 11 recommended)
Internet connection to download XAMPP and DVWA
Basic understanding of web browsers and file systems
---
*Step-by-Step Overview*
1. *Install XAMPP* – the web server package for Windows.
2. *Start Apache and MySQL* from the XAMPP control panel.
3. *Download DVWA* from the official GitHub repository.
4. *Extract DVWA* into the XAMPP `htdocs` folder.
5. *Configure `config/config.inc.php`* with your MySQL credentials.
6. *Create the DVWA database* via phpMyAdmin.
7. *Adjust PHP settings* if necessary (allow `allow_url_include`, set `max_execution_time`).
8. *Access DVWA via browser* using `http://localhost/dvwa`.
9. *Log in* using default credentials (admin/password) and start practicing!
---
*Safety Tips*
⚠️ Always run DVWA **locally**, never expose it to the internet.
This ensures you can practice **without risking real systems**.
---
*Additional Resources*
DVWA Official GitHub: [https://github.com/digininja/DVWA](https://github.com/digininja/DVWA)
XAMPP Download: [https://www.apachefriends.org/index.html](https://www.apachefriends.org/index.html)
---
*Why Watch This Video*
This tutorial is **step-by-step, beginner-friendly, and fully visual**. Even if you’ve never installed a web application on Windows before, by the end of this video, DVWA will be ready for you to **start testing real vulnerabilities safely**.
---
✅ *Action Steps After Watching*
1. Set DVWA security to *low* for testing purposes.
2. Start practicing SQL Injection, XSS, and more.
3. Experiment in a safe environment to **build real-world skills**.
---
💬 *Comment below* if you run into any issues during installation. I’ll guide you personally!
---
#DVWA #WebSecurity #EthicalHacking #PenetrationTesting #CyberSecurityForBeginners #WindowsTutorial #XAMPP #OWASP #CyberSecurityLab