OWASP provides a great project so called Mutillidae, which is a deliberately vulnerable web-application providing a target for web-security enthusiast. It comes preinstalled with SamuraiWTF, Rapid7 Metasploitable-2 and OWASP BWA, but it's also very easy to setup it by your own. This tutorial describes how to install all the required packages and the necessary configuration steps to get Mutillidae up and running on your system or a Virtual Machine (VM).