API-Security / APISandbox
Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
☆393Updated 2 years ago
Alternatives and similar repositories for APISandbox:
Users that are interested in APISandbox are comparing it to the libraries listed below
- TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.☆570Updated 2 years ago
- a lightweight, flexible and novel open source poc verification framework☆234Updated 2 years ago
- Remote Code Injection In Log4j☆463Updated 3 years ago
- OpenSource Poc && Vulnerable-Target Storage Box.☆681Updated 2 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆573Updated 4 years ago
- RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.☆533Updated last year
- Monitoring exploits & references for CVEs☆229Updated last year
- 极致攻防实验室 nuclei 检测 POC☆614Updated last year
- BurpBounty 魔改版本☆412Updated 3 years ago
- Log4j jndi injects the Payload generator☆485Updated 3 years ago
- PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus☆174Updated 10 months ago
- Nuclei plugin for BurpSuite☆1,228Updated 6 months ago
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆777Updated 9 months ago
- Vulnerabilities of Goby supported with exploitation.☆721Updated 2 weeks ago
- Msmap is a Memory WebShell Generator.☆577Updated last year
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆197Updated 9 months ago
- 🔍 Github CVE POC 信息监控推送 🚀☆314Updated this week
- Functional enhancement based on nuclei☆329Updated 4 months ago
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- A tiny project for generating SnakeYAML deserialization payloads☆587Updated 5 years ago
- Here you can find mostly all disclosed h1 reports☆348Updated 3 years ago
- ☆115Updated 2 years ago
- Totally Insecure Web Application Project (TIWAP)☆171Updated last year
- APIKit:Discovery, Scan and Audit APIs Toolkit All In One.☆2,051Updated 11 months ago
- k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.☆286Updated 3 years ago
- EasyPen is a GUI program which helps pentesters do target discovery, vulnerability scan and exploitation☆610Updated 2 years ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆262Updated 4 years ago
- 事件驱动的渗透测试扫描器 Event-driven pentest scanner☆672Updated 8 months ago
- Small Tool written based on chaos from projectdiscovery.io☆171Updated 5 months ago
- A Burp Extender for checking for struts 2 RCE vulnerabilities.☆285Updated 9 months ago