Checkmarx / Goatlin

Related projects: ⓘ

• jaiswalakshansh / Vuldroid
  Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code
  ☆62Updated 3 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆129Updated 7 months ago
• teknogeek / get_schemas
  Print out URL schemas from an Android app
  ☆110Updated 3 weeks ago
• elttam / semgrep-rules
  ☆173Updated 6 months ago
• mindedsecurity / semgrep-rules-android-security
  A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
  ☆237Updated last month
• LewisArdern / metasecjs
  MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts
  ☆77Updated last year
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆75Updated 2 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆41Updated 7 months ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆82Updated last year
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 3 years ago
• ShiftLeftSecurity / flask-webgoat
  flask-webgoat is a deliberately-vulnerable application written with the Flask web framework.
  ☆18Updated 2 months ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆46Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆164Updated 2 months ago
• optiv / InsecureShop
  An Intentionally designed Vulnerable Android Application built in Kotlin.
  ☆230Updated 2 years ago
• secdec / attack-surface-detector-cli
  ☆72Updated 2 years ago
• we45 / RoboZap
  ☆32Updated last year
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆110Updated last year
• szski / shapeshifter
  GraphQL security testing tool
  ☆113Updated 2 years ago
• appsecco / dvcsharp-api
  Damn Vulnerable C# Application (API)
  ☆71Updated 2 months ago
• hax0rgb / InsecureShop
  An Intentionally designed Vulnerable Android Application built in Kotlin.
  ☆137Updated 5 months ago
• NotSoSecure / android_application_analyzer
  The tool is used to analyze the content of the android application in local storage.
  ☆152Updated 8 months ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆95Updated 9 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆74Updated last month
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆191Updated 8 months ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆125Updated 6 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆167Updated last year
• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆100Updated 2 months ago
• PortSwigger / stepper
  A natural evolution of Burp Suite's Repeater tool
  ☆91Updated last year
• mattvaldes / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆69Updated 7 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆95Updated 7 months ago