0c34 / govwaLinks
☆180Updated 3 months ago
Alternatives and similar repositories for govwa
Users that are interested in govwa are comparing it to the libraries listed below
Sorting:
- Intentionally vulnerable Go web app.☆43Updated 2 weeks ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆259Updated 3 years ago
- A Go implementation of dirsearch.☆279Updated 3 years ago
- Nmap XML parsing library for Go☆101Updated 2 years ago
- A toy CTF Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface☆88Updated last month
- A mini webserver with FTP support for XXE payloads☆331Updated last year
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆287Updated 4 months ago
- Go Web Application Penetration Test☆347Updated 8 months ago
- Wappalyzer implementation in Go☆196Updated last year
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆301Updated 2 years ago
- Security with Go, published by Packt☆275Updated 2 years ago
- A lab to play with authentication and authorisation problems☆96Updated 2 years ago
- golang version for nmap service and application version detection (without nmap installation)☆168Updated 4 years ago
- [ceased maintenance] An open source alternative to burp suite written in Go.☆156Updated 6 years ago
- Generate CodeQL taint-tracking models for Go (along with tests) in a graphical UI☆20Updated 2 years ago
- A simple SSRF-testing sheriff written in Go☆327Updated 7 months ago
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆126Updated 2 years ago
- ZAP Go API☆61Updated 11 months ago
- Tool for searching Exploits from Exploit Databases, etc.☆283Updated last week
- Damn Vulnerable Thick Client App☆150Updated 4 years ago
- A modular bug hunting and web application pentesting framework written in Go☆56Updated 3 years ago
- Java deserialization exploitation lab.☆235Updated 6 years ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆112Updated 6 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆349Updated 2 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆291Updated 2 years ago
- JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.☆99Updated 5 years ago
- HTML5 WebSocket message fuzzer☆146Updated 6 years ago
- ☆182Updated this week
- Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (…☆314Updated 6 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆600Updated 4 years ago