Commando-X / vuln-bankView external linksLinks
A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure code reviews. Features common vulnerabilities found in real-world applications, making it an ideal platform for security professionals, developers, and enthusiasts to learn pentesting and secure coding practices.
☆558Nov 23, 2025Updated 2 months ago
Alternatives and similar repositories for vuln-bank
Users that are interested in vuln-bank are comparing it to the libraries listed below
Sorting:
- A deliberately vulnerable mobile banking application designed for practicing mobile security testing. Features common vulnerabilities fou…☆78Nov 25, 2025Updated 2 months ago
- ☆46Nov 22, 2025Updated 2 months ago
- Collection of Notes and CheatSheets used for Red teaming Certs☆490Feb 13, 2023Updated 3 years ago
- HackerOne Notifier is an automated bot that monitors new programs launched on HackerOne and sends Telegram Bot notifications whenever a n…☆22Nov 4, 2025Updated 3 months ago
- Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It …☆69Jun 5, 2025Updated 8 months ago
- Automation tool to testing and confirm the xss vulnerability.☆306Jul 18, 2025Updated 6 months ago
- A collection of js analysis tools & scripts.☆18Dec 1, 2025Updated 2 months ago
- Grep subdomains from web pages.☆42Feb 10, 2025Updated last year
- This repository contains detailed adversary simulation APT campaigns targeting various critical sectors. Each simulation includes custom …☆1,036Jan 11, 2026Updated last month
- RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…☆226Mar 28, 2025Updated 10 months ago
- Bash scripts to automate the burpsuite's certificate configuration and proxying of an Android device for penetration test.☆19May 26, 2025Updated 8 months ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆813Mar 28, 2025Updated 10 months ago
- best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect☆1,515Dec 7, 2025Updated 2 months ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆398Updated this week
- Developing an open source Windows EDR written in C & C++ & C#☆25Jun 27, 2025Updated 7 months ago
- My Notes about Penetration Testing☆728Jan 17, 2026Updated 3 weeks ago
- OpenSSH Vulnerabilities Scanner: Bulk Scanning Tool for 21 different OpenSSH CVEs.☆10Apr 29, 2025Updated 9 months ago
- Mythic C2 wrapper for NimSyscallPacker☆25Mar 12, 2025Updated 11 months ago
- A simple place to learn XSS☆31Mar 20, 2021Updated 4 years ago
- Just A list Of Some Multilingual XSS Payloads and other weird ones i made☆123Sep 28, 2025Updated 4 months ago
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆225Aug 25, 2025Updated 5 months ago
- ShadowPhish is an advanced APT awareness toolkit designed to simulate real-world phishing, malware delivery, deepfakes, smishing/vishing,…☆223Apr 18, 2025Updated 9 months ago
- Knowledge Management for Offensive Security Professionals Official Repository☆152Feb 25, 2025Updated 11 months ago
- Azure AppHunter is an open-source tool created for security researchers, red teamers and defenders to help them identify excessive privil…☆99Sep 10, 2025Updated 5 months ago
- 免杀木马样本☆102Oct 11, 2025Updated 4 months ago
- ☆650Feb 6, 2026Updated last week
- SubOwner - A Simple tool check for subdomain takeovers.☆116Oct 18, 2024Updated last year
- ☆23Sep 19, 2024Updated last year
- ☆618Feb 5, 2026Updated last week
- This repository provides examples of Vulnerable and Mitigated code as per CWE Categorization.☆23May 4, 2024Updated last year
- Blank methodology sheet for the OSWE exam☆12Dec 17, 2021Updated 4 years ago
- CONTROL C2 is a command and control framework designed for red teamers and penetration testers.☆15Oct 16, 2024Updated last year
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆106Mar 10, 2025Updated 11 months ago
- PentestAgent is an AI agent framework for black-box security testing, supporting bug bounty, red-team, and penetration testing workflows.☆1,462Updated this week
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆43Feb 24, 2025Updated 11 months ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆162Jul 14, 2025Updated 7 months ago
- PEN-300 collection to help you on your exam.☆686Aug 15, 2025Updated 5 months ago
- ☆548Feb 3, 2026Updated last week
- Lab used for workshop and CTF☆491Feb 3, 2026Updated last week