0xn3va / application-security-handbookLinks
A knowledge base of best practices for application security
☆28Updated 2 years ago
Alternatives and similar repositories for application-security-handbook
Users that are interested in application-security-handbook are comparing it to the libraries listed below
Sorting:
- Secrets scanner that understands code☆188Updated last year
- Nuclei plugins to audit Chrome extensions☆65Updated last year
- This script is used to automatically start/stop ec2 instance to match target ip in aws ip pool to takeover subdomain..☆16Updated last year
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆237Updated last year
- ☆82Updated 2 years ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆224Updated 2 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆135Updated 5 months ago
- Awesome information for WebSockets security research☆275Updated 3 years ago
- Source Code Review resources for Bug Bounty Hunters & Developers. This Repo is updated consistently.☆71Updated 3 years ago
- ☆215Updated last year
- Sample Obsidian's vault for web pentesting☆99Updated last year
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆53Updated 11 months ago
- ⚔️ A compiled list of companies who have active programs for responsible disclosure☆168Updated this week
- A Django web application for curating Bug Bounty educational Videos☆99Updated last year
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…☆93Updated 2 years ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆79Updated last year
- A list of governments with Vulnerability Disclosure Policies☆95Updated last year
- The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…☆49Updated last month
- QRFuzz, a fuzzing toolkit to test malicious QR Codes in mobile applications☆46Updated last year
- ☆59Updated 10 months ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆39Updated 3 years ago
- Collection's of Tech Talk that are presented by me :)☆97Updated 7 months ago
- This repository contains all of the resources and materials of @bhavesharmalkar's Learn365 series, including links to articles, videos, a…☆24Updated last year
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆203Updated last month
- Payloads for Attacking Large Language Models☆98Updated 3 months ago
- Prompt Injections Everywhere☆144Updated last year
- Learning and hunting SQL injection bugs for 50 continuous days☆76Updated 3 years ago
- Summary of almost all paid bounty reports on H1☆43Updated 4 years ago
- Talosplus is a fast and robust template based Intelligent automation framework primarily developed for Bug Bounty Automation☆88Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆195Updated last year