A NoSQL Injectable Node App
☆42Jun 8, 2021Updated 4 years ago
Alternatives and similar repositories for vulnerable-node-app
Users that are interested in vulnerable-node-app are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Labs built in docker to cover NSE lessons☆11Nov 24, 2023Updated 2 years ago
- A simple web app with a XXE vulnerability.☆232Nov 10, 2021Updated 4 years ago
- App with Server Side Template Injection (SSTI) vulnerability - possible RCE - in Flask. Free vulnerable app for ethical hacking / penetra…☆16Sep 15, 2022Updated 3 years ago
- a ZAPROXY Addon ActiveScan for detecting SQL injection with more better way.☆18Jan 22, 2025Updated last year
- Proof of concept code (which means poor code quality) for a proxy abusing unrestricted cross domain policies.☆23Aug 28, 2013Updated 12 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- QL Workshop☆16Sep 30, 2019Updated 6 years ago
- Collection of over 9000 xss payloads | heavy xss collection☆13Dec 6, 2022Updated 3 years ago
- bugBounty Scripts☆11Feb 3, 2023Updated 3 years ago
- A framework for linking the DOM and DOM based events with scripting languages compiled to WASM. Part of the PyScript project.☆12Oct 1, 2024Updated last year
- ☆88Apr 24, 2024Updated 2 years ago
- Mass IP Grabbbing From Bing | Mr.MaGnoM☆12Jun 6, 2018Updated 7 years ago
- Load the evilDLL from socket connection without touch disk☆15Aug 27, 2021Updated 4 years ago
- Intentionally Vulnerable Flask app for use in Demos☆34Feb 7, 2026Updated 2 months ago
- ☆10Apr 27, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- This tool is used to find the admin login page of a website.☆16Jan 15, 2021Updated 5 years ago
- SQL injection via unsanitized QuerySet.order_by() input☆13Jul 10, 2021Updated 4 years ago
- CVE-2021-26855, also known as Proxylogon, is a server-side request forgery (SSRF) vulnerability in Exchange that allows an attacker to …☆12Jan 1, 2024Updated 2 years ago
- Okadminfinder rewrite by Xnuvers007☆16Apr 13, 2021Updated 5 years ago
- A Burp Suite Extender that recognize CAPTCHA and use for intruder payload☆18Dec 28, 2017Updated 8 years ago
- Serverless Workshop☆16Dec 8, 2022Updated 3 years ago
- Damn Simple Vulnerable Python Web Application☆18Jun 5, 2024Updated last year
- The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489☆31Mar 26, 2024Updated 2 years ago
- A simple Node.js Express REST app with some OWASP vulnerabilities.☆22Aug 13, 2024Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- CLI tool that extracts a regex pattern from a list of urls ( Rust )☆61Sep 14, 2022Updated 3 years ago
- MCP server that connects AI assistants to HackerOne for bug bounty hunting☆271Apr 7, 2026Updated 3 weeks ago
- ☆37Sep 29, 2020Updated 5 years ago
- C4T BuT S4D Attack-Defence CTF☆13Feb 6, 2022Updated 4 years ago
- Burp extension to automatically drop requests that match a certain regex.☆10Mar 10, 2023Updated 3 years ago
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆47Feb 16, 2024Updated 2 years ago
- A very vulnerable implementation of a GraphQL API.☆61Nov 12, 2021Updated 4 years ago
- ✅ CTF participation Telegram Bot☆14Aug 5, 2022Updated 3 years ago
- Certipy in Docker☆13Mar 28, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A laboratory for learning secure web and mobile development in a practical manner.☆977Sep 25, 2024Updated last year
- NTLM Hash Generator☆10Apr 2, 2021Updated 5 years ago
- Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+☆24Jul 31, 2025Updated 9 months ago
- P2P Communications of Named Pipes☆12Dec 11, 2025Updated 4 months ago
- ☆19Feb 23, 2026Updated 2 months ago
- String or worldlist encoder for use in fuzzing or web application testing☆19Sep 2, 2019Updated 6 years ago
- iPod shuffle 3 bootrom exploit (Pwnage 2.0)☆15Nov 30, 2024Updated last year