CSPF-Founder / VulnerableSpring

Related projects: ⓘ

• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆45Updated 6 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆64Updated 9 months ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 6 years ago
• feakk / xxxpwn
  Advanced XPath Injection Tool
  ☆31Updated 9 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated last month
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated last year
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆30Updated 3 months ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 5 years ago
• rafaybaloch / SOP-Bypass-Mini-Test-Suite
  This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…
  ☆31Updated 5 years ago
• hoainam1989 / training-application-security
  This repository for training application security.
  ☆26Updated 5 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 5 years ago
• PortSwigger / freddy-deserialization-bug-finder
  ☆41Updated 4 years ago
• simonuvarov / expdev
  Vulnerable software and exploits used for OSCP/OSCE preparation
  ☆24Updated 7 years ago
• 7ioSecurity / XSS-Payloads
  XSS Payloads
  ☆46Updated 8 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆51Updated 5 years ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 5 years ago
• dnet / burp-oauth
  OAuth plugin for Burp Suite Extender
  ☆42Updated 6 years ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆45Updated 11 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆54Updated 6 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆121Updated 6 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 6 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 7 years ago
• eoftedal / deserialize
  intentionally vulnerable API
  ☆28Updated last week
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆30Updated 6 years ago
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆47Updated 3 years ago
• zi0Black / POC-CVE-2018-0114
  This repository contains the POC of an exploit for node-jose < 0.11.0
  ☆25Updated last year
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆36Updated 11 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆46Updated last year
• syriusbughunt / CVE-2018-14667
  All about CVE-2018-14667; From what it is to how to successfully exploit it.
  ☆47Updated 5 years ago
• no-sec-marko / java-web-vulnerabilities
  Plattform to develop and experiment with existing java web attacks.
  ☆31Updated 6 years ago