Alternatives and similar repositories for vulnerable-code-snippets

Users that are interested in vulnerable-code-snippets are comparing it to the libraries listed below

• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆71Updated 3 years ago
• GoSecure / request-smuggling-workshop
  ☆26Updated 2 years ago
• PortSwigger / ator
  ☆30Updated last year
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆42Updated last year
• vulnbe / burpsuite-copy-as-xmlhttprequest
  Copy as XMLHttpRequest BurpSuite extension
  ☆31Updated 4 years ago
• b0n1t0 / gSAST
  gSAST - Grep Static Analysis Security Tool
  ☆13Updated last year
• koaj / aws-s3-bucket-wordlist
  Most common AWS S3 bucket names.
  ☆27Updated 5 years ago
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated 11 months ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆47Updated 2 years ago
• w4fz5uck5 / Pentest-notes
  Pentest stuff
  ☆49Updated last year
• drak3hft7 / OSCP-Exam-Report-Template
  Template used for my OSCP exam.
  ☆28Updated 2 years ago
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆54Updated 4 years ago
• ApexPredator-InfoSec / AWAE-OSWE
  Review of AWAE.OSWE
  ☆31Updated 3 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• PortSwigger / server-side-prototype-pollution
  ☆36Updated 2 years ago
• PortSwigger / serialization-examples
  ☆40Updated last year
• haqqibrahim / Sling-Shot-R3con
  🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯
  ☆25Updated last year
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 3 years ago
• LorenzoTullini / InfluxDB-Exploit-CVE-2019-20933
  InfluxDB CVE-2019-20933 vulnerability exploit
  ☆41Updated 3 years ago
• nullenc0de / reverse-apk
  ☆52Updated 7 months ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 3 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆52Updated 3 years ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆65Updated 3 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆34Updated 2 months ago
• yavolo / Web-CTF-Cheatsheet
  Web CTF CheatSheet 🐈
  ☆34Updated 6 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆42Updated 3 years ago
• sec-it / BFAC-Burp-Extension
  Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)
  ☆20Updated 3 years ago
• Th0h0 / autopoisoner
  Web cache poisoning vulnerability scanner.
  ☆68Updated 3 years ago
• InitRoot / RouteRunner
  Checks if files is accessible based on the source code.
  ☆16Updated last year
• CsEnox / CVE-2021-22911
  Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1
  ☆58Updated last year