0xRadi / OWASP-Web-Checklist
OWASP Web Application Security Testing Checklist
☆1,839Updated 2 years ago
Alternatives and similar repositories for OWASP-Web-Checklist:
Users that are interested in OWASP-Web-Checklist are comparing it to the libraries listed below
- OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…☆1,575Updated 2 years ago
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,563Updated 3 years ago
- Ressources for bug bounty hunting☆1,804Updated 2 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,246Updated 4 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆879Updated 5 months ago
- A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.☆1,124Updated last year
- This script is intended to automate your reconnaissance process in an organized fashion☆1,958Updated 3 years ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆2,803Updated 8 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,083Updated last month
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆5,399Updated 7 months ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆3,842Updated 8 months ago
- A OWASP Based Checklist With 500+ Test Cases☆717Updated 2 years ago
- This challenge is Inon Shkedy's 31 days API Security Tips.☆2,119Updated 2 years ago
- A curated list of amazingly awesome Burp Extensions☆3,110Updated last month
- Beginner Guide to Bug Hunting☆753Updated last year
- The Bug Hunters Methodology☆4,029Updated last year
- Take a list of domains and probe for working HTTP and HTTPS servers☆2,972Updated 9 months ago
- ☆997Updated 3 years ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,396Updated 2 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,769Updated 3 years ago
- Subdomain Takeover tool written in Go☆1,952Updated last year
- A script to set up a quick Ubuntu 17.10 x64 box with tools I use.☆1,186Updated 8 months ago
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆7,798Updated this week
- Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios☆1,336Updated 2 years ago
- Mind-Maps of Several Things☆2,524Updated last year
- Contextual Content Discovery Tool☆2,777Updated 11 months ago
- XSS payloads designed to turn alert(1) into P1☆1,347Updated last year
- The XSS Hunter service - a portable version of XSSHunter.com☆1,514Updated 2 years ago
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,747Updated 9 months ago
- A python script that finds endpoints in JavaScript files☆3,886Updated 11 months ago