Checkmarx / Goatlin
(aka Kotlin Goat) - an intentionally vulnerable Kotlin application
☆33Updated 5 months ago
Related projects: ⓘ
- Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code☆62Updated 3 years ago
- Damn Vulnerable Java (EE) Application☆129Updated 7 months ago
- Print out URL schemas from an Android app☆110Updated 3 weeks ago
- ☆173Updated 6 months ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆237Updated last month
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆77Updated last year
- Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks☆75Updated 2 years ago
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆41Updated 7 months ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆82Updated last year
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 3 years ago
- flask-webgoat is a deliberately-vulnerable application written with the Flask web framework.☆18Updated 2 months ago
- A collection of my Semgrep rules☆46Updated last year
- Purposely vulnerable Java application to help lead secure coding workshops☆164Updated 2 months ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆230Updated 2 years ago
- ☆72Updated 2 years ago
- ☆32Updated last year
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆110Updated last year
- GraphQL security testing tool☆113Updated 2 years ago
- Damn Vulnerable C# Application (API)☆71Updated 2 months ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆137Updated 5 months ago
- The tool is used to analyze the content of the android application in local storage.☆152Updated 8 months ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆95Updated 9 months ago
- Manager of third-party sources of Semgrep rules 🗂☆74Updated last month
- Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …☆191Updated 8 months ago
- Predict Mongo ObjectIds☆125Updated 6 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆167Updated last year
- GraphQL security workshop labs☆100Updated 2 months ago
- A natural evolution of Burp Suite's Repeater tool☆91Updated last year
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆69Updated 7 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆95Updated 7 months ago