Need help with kurukshetra?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

135 Stars 21 Forks GNU General Public License v3.0 71 Commits 1 Opened issues


Kurukshetra - A framework for teaching secure coding by means of interactive problem solving.

Services available


Need anything else?

Contributors list

# 103,654
32 commits
# 129,807
24 commits

Kurukshetra   Tweet


Github Release Version Github Release Version License Kurukshetra loves Open source Follow Kurukshetra on Twitter

Kurukshetra is a web framework that’s developed with the aim of being the first open source framework which provides a solid foundation to host reasonably complex secure coding challenges while still providing the ability to efficiently and dynamically execute each challenge on the basis of user input in a secure sandboxed environment.

Kurukshetra is composed of two components, the backend framework written in PHP, which manages and leverages the underlying docker system to provide the secure sandbox for the challenge execution, and the frontend, which is a user facing web app providing all the necessary controls, for the admin to host and modify the challenges , and the user to execute and view the result of each of his input.

Detailed Tool Documentation:


Supported Platforms

Kurukshetra has been tested both on Ubuntu/Debian (apt-get based distros) and as well as Mac OS. It should ideally work with any linux based distributions with PHP 7.2, MySQL and Docker (along with remote API enabled) installed.


There are a few packages which are necessary before proceeding with the installation:


Installing is as simple as moving the downloaded files into webroot:

git clone
cd kurukshetra
cp -r * /var/www/html/
chmod 755 -R /var/www/html
  • Move all the files into webroot (which is usually
    cp -r kurukshetra/* /var/www/html
  • Give appropriate permissions for the moved files:
    chmod 755 -R /var/www/html/
  • Give
    directory write permissions for
    user (see
  • Visit
    to navigate into installation (will auto redirect into /installation/).

  • Enter the MySQL DB credentials (user should have the permission to create database) and click on validate to see if the credentials are correct.
  • Enter the Google OAuth
    Client ID
    Client secret
    and make sure the redirect URL is set to the path

Configuring Docker

Kurukshetra make uses of Dockers API's for running the user submitted code. A one time configuration is required before we can make use of the docker API's which is as follows:

  • Pull the docker image:
    docker pull phusion/baseimage:latest
  • Goto installation directory:
    cd installation/optional/
  • Build kurukshetra image from the Dockerfile:
    docker build -t kurukshetra .

Alternatively, you can just run

from within the directory
which will go ahead and install Docker (if not installed already) and will configure the Kurukshetra docker image automatically.


The following are couple of ideas which we have in mind to do going ahead with Kurukshetra. If you have any ideas/feature requests which is not listed below, feel free to raise an issue in github.

  • Support for more languages including but not limited to JAVA, NodeJs and Ruby on Rails.

  • Write more challenges along with unittests to cover all the OWASP Top 10 vulnerabilities.

  • Gamification of the whole framework by introducing scorebard based on challenge solving points (predefined points are already available for challenges based on difficulties).


  1. Challenge listing page:


  1. Challenge solving page:


  1. Admin portal (statictics):


  1. Admin challenge edit/add challenges:


Video demo (Admin Functionalities)

Kurukshetra Admin functionalities


Awesome people who built this project:

Lead Developers:

Anirudh Anand (@a0xnirudh)
Mohan KK (@MohanKallepalli)

Project Contributors:

Arjun T U (@arjunkikz)
Durga Subramanian (@0xdug)
Ankur Bhargava (@_AnkurB)
Prajal Kulkarni (@prajalkulkarni)

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.