Alternatives and similar repositories for vulnerable-code-snippets

Users that are interested in vulnerable-code-snippets are comparing it to the libraries listed below

• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆53Updated 3 years ago
• ApexPredator-InfoSec / AWAE-OSWE
  Review of AWAE.OSWE
  ☆31Updated 3 years ago
• SecAuraYT / OSWE
  Repo for OSWE related video content for @SecAura Youtube Channel
  ☆35Updated 3 years ago
• PortSwigger / serialization-examples
  ☆42Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆59Updated 5 years ago
• b0n1t0 / gSAST
  gSAST - Grep Static Analysis Security Tool
  ☆13Updated last year
• EasyRecon / wappaGo
  ☆57Updated last year
• k3nundrum / CRTP
  Notes for CRTP
  ☆41Updated 4 years ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆91Updated 2 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 3 years ago
• dmdhrumilmistry / offat
  Tests your API automatically for common API vulnerabilities. Project is still Work In Progress. PRs are appreciated.
  ☆34Updated last year
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆125Updated 2 years ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆69Updated 4 years ago
• JetP1ane / Affinis
  Recurrent Neural Network SubDomain Discovery Tool
  ☆95Updated 3 years ago
• InitRoot / RouteRunner
  Checks if files is accessible based on the source code.
  ☆16Updated last year
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆99Updated last month
• RakeshKengale / RaKKeN
  Information Security Information From Web
  ☆28Updated 2 months ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆45Updated last year
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆44Updated last year
• drak3hft7 / OSCP-Exam-Report-Template
  Template used for my OSCP exam.
  ☆30Updated 3 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆51Updated 3 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆52Updated 3 years ago
• PortSwigger / ator
  ☆31Updated last year
• ssl / shortboost
  Unicode characters that will translate a single character to multiple characters in domain names or TLD's
  ☆48Updated 11 months ago
• GoSecure / request-smuggling-workshop
  ☆27Updated 2 years ago
• koaj / aws-s3-bucket-wordlist
  Most common AWS S3 bucket names.
  ☆27Updated 5 years ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆133Updated 2 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆62Updated 2 months ago