Juice
Juice is a free, open-source intentionally vulnerable web application created by the OWASP Project (Open Worldwide Application Security Project). It is designed as a learning platform for security researchers, developers, and students to practice identifying and exploiting common web application vulnerabilities in a controlled, legal environment. Juice Shop simulates a real e-commerce platform with deliberate security flaws across multiple categories including injection attacks, broken authentication, sensitive data exposure, and more. It is widely used in security training, capture-the-flag competitions, and educational coursework.
AI Recommendation
1 suggestionJuice is a Node.js-based web application, not a macOS native executable, so it does not depend on Rosetta 2 or macOS architecture in the traditional sense. However, if you are running Juice locally on macOS for development or training purposes, you have three deployment options: (1) run from source by cloning the GitHub repository and using npm with a recent Node.js (versions 20.x, 22.x, or 24.x are officially supported), (2) download a pre-packaged distribution from the GitHub releases page and extract it, or (3) run it in Docker using the official bkimminich/juice-shop image, which supports both Intel (amd64) and Apple Silicon (arm64) architectures natively. For Apple Silicon Macs, the Docker image with the `latest` tag includes native ARM64 support, so you can run Juice without any compatibility layers by using `docker run -d -p 127.0.0.1:3000:3000 bkimminich/juice-shop`. If you prefer running from source, ensure your Node.js installation is current — Node.js itself ships native Apple Silicon builds, so updating to the latest LTS version will give you optimal performance. Neither distribution method is affected by Rosetta 2's retirement in September 2028.
Recommended reading