Alternatives and similar repositories for vulnerable-code-snippets:

Users that are interested in vulnerable-code-snippets are comparing it to the libraries listed below

• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆47Updated 9 months ago
• PortSwigger / ator
  ☆30Updated 11 months ago
• koaj / aws-s3-bucket-wordlist
  Most common AWS S3 bucket names.
  ☆27Updated 4 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 2 years ago
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 3 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆70Updated 3 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• DarkRelay-Security-Labs / Vulnerable-Windows-Application
  Vulnerable Windows Application
  ☆15Updated last year
• GoSecure / request-smuggling-workshop
  ☆25Updated 2 years ago
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆51Updated 4 years ago
• PortSwigger / serialization-examples
  ☆39Updated last year
• mrrootsec / AssetViz
  AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…
  ☆32Updated 11 months ago
• 10goto20 / seltzer
  A Burp Suite extension for headless, unattended scanning.
  ☆36Updated 4 years ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆29Updated 6 months ago
• PortSwigger / site-map-extractor
  ☆10Updated 3 years ago
• ApexPredator-InfoSec / AWAE-OSWE
  Review of AWAE.OSWE
  ☆31Updated 3 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆47Updated 2 years ago
• carlospolop / Pastos
  ☆53Updated 2 years ago
• ShutdownRepo / uberfile
  Simple CLI tool for the generation of downloader oneliners for UNIX-like or Windows systems
  ☆41Updated 4 years ago
• gdraperi / slurp-1
  S3 bucket enumerator
  ☆29Updated 5 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆35Updated 2 years ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆26Updated 2 years ago
• haqqibrahim / Sling-Shot-R3con
  🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯
  ☆24Updated last year
• harisec / orange-confusion-attacks
  Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
  ☆20Updated 7 months ago
• hackvertor / shadow-repeater
  ☆25Updated this week
• spyx / ParamAngler
  ☆27Updated 2 years ago
• PortSwigger / wordlist-extractor
  ☆21Updated 7 years ago
• EasyRecon / wappaGo
  ☆56Updated 10 months ago
• deepak0401 / Front-Page-Exploit
  HTTP requests of FrontPage expolit
  ☆25Updated 11 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆39Updated 3 years ago