Commando-X / vuln-bank
A deliberately vulnerable banking application designed for practicing secure code reviews and API security testing. Features common vulnerabilities found in real-world applications, making it an ideal platform for security professionals, developers, and enthusiasts to learn security testing and secure coding practices in a safe environment.
☆115Updated 3 weeks ago
Alternatives and similar repositories for vuln-bank:
Users that are interested in vuln-bank are comparing it to the libraries listed below
- A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified P…☆149Updated this week
- This repository contains cheatsheets and payloads compiled from completing the labs at PortSwigger Academy.☆88Updated 3 months ago
- Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a var…☆37Updated this week
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆86Updated this week
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆97Updated 2 weeks ago
- ☆87Updated 2 weeks ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆92Updated 3 months ago
- OSCP Cheatsheet by Sai Sathvik☆68Updated last year
- The repository contains useful GitHub dorks for finding open-source vulnerabilities.☆72Updated last year
- ☆46Updated last month
- Nuclei-AI-Prompts☆183Updated 2 weeks ago
- Python for AWAE (Advanced Web Attacks and Exploitation)☆93Updated last year
- ☆120Updated last month
- ☆51Updated last year
- A OWASP Based Checklist With 80+ Test Cases☆141Updated 2 years ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 8 months ago
- This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer whil…☆41Updated last month
- Complete Roadmap for Penetration Testing☆208Updated 7 months ago
- A Powerful Recon Engine☆63Updated 5 months ago
- 𝗖𝗼𝗺𝗽𝗹𝗲𝘁𝗲 𝗕𝘂𝗴 𝗕𝗼𝘂𝗻𝘁𝘆 𝗥𝗼𝗮𝗱𝗺𝗮𝗽 🎯☆77Updated last month
- Hi everyone,☆59Updated last year
- A passive way to find backups/ sensitive information.☆77Updated 2 weeks ago
- Bug Bounty Web and API Payloads☆34Updated 5 months ago
- INE Training Notes☆28Updated 2 weeks ago
- ☆87Updated 2 years ago
- SubOwner - A Simple tool check for subdomain takeovers.☆111Updated 6 months ago
- A collection of solutions for every PortSwigger Academy Lab (in progress)☆96Updated 3 years ago
- Web Application Penetration Testing☆108Updated 2 months ago
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆50Updated 3 months ago
- Since the SecOps Group has offered free certification to Certified Appsec Practitioner I will be creating notes here. I will be working o…☆49Updated last year