A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure code reviews. Features common vulnerabilities found in real-world applications, making it an ideal platform for security professionals, developers, and enthusiasts to learn pentesting and secure coding practices.
☆726May 5, 2026Updated 3 weeks ago
Alternatives and similar repositories for vuln-bank
Users that are interested in vuln-bank are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A deliberately vulnerable mobile banking application designed for practicing mobile security testing. Features common vulnerabilities fou…☆91Nov 25, 2025Updated 6 months ago
- Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It …☆71Jun 5, 2025Updated 11 months ago
- HackerOne Notifier is an automated bot that monitors new programs launched on HackerOne and sends Telegram Bot notifications whenever a n…☆22Nov 4, 2025Updated 6 months ago
- Collection of Notes and CheatSheets used for Red teaming Certs☆499Feb 13, 2023Updated 3 years ago
- A collection of js analysis tools & scripts.☆19May 4, 2026Updated 3 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Bash scripts to automate the burpsuite's certificate configuration and proxying of an Android device for penetration test.☆21May 26, 2025Updated last year
- A python-based vulnerability scanner designed to identify open redirect flaws in website applications.☆25Mar 15, 2026Updated 2 months ago
- RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…☆232Mar 28, 2025Updated last year
- Automation tool to testing and confirm the xss vulnerability.☆308Jul 18, 2025Updated 10 months ago
- This repository contains detailed adversary simulation APT campaigns targeting various critical sectors. Each simulation includes custom …☆1,082May 11, 2026Updated 2 weeks ago
- Just A list Of Some Multilingual XSS Payloads and other weird ones i made☆126Sep 28, 2025Updated 8 months ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆435Feb 7, 2026Updated 3 months ago
- best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect☆1,572Dec 7, 2025Updated 5 months ago
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆232Aug 25, 2025Updated 9 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆818Mar 28, 2025Updated last year
- ☆16Apr 17, 2025Updated last year
- Grep subdomains from web pages.☆42Feb 10, 2025Updated last year
- HackList: Your go-to AI-powered guide to hands-on cybersecurity learning!☆23Jul 6, 2025Updated 10 months ago
- My Notes about Penetration Testing☆734Jan 17, 2026Updated 4 months ago
- Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dll☆51Jun 16, 2025Updated 11 months ago
- This contains the contents needed to deploy a home lab in VirtualBox.☆18Jul 6, 2020Updated 5 years ago
- Knowledge Management for Offensive Security Professionals Official Repository☆153Feb 25, 2025Updated last year
- PentestAgent is an AI agent framework for black-box security testing, supporting bug bounty, red-team, and penetration testing workflows.☆2,410May 16, 2026Updated last week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- AWS IAM Username Enumerator and Password Spraying Tool in Python3☆89Dec 7, 2025Updated 5 months ago
- A simple place to learn XSS☆31Mar 20, 2021Updated 5 years ago
- This repository is a full-stack food delivery application inspired by Zomato. It includes a React.js frontend and integrates DevSecOps pr…☆15Apr 4, 2025Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆118Oct 18, 2024Updated last year
- ShadowPhish is an advanced APT awareness toolkit designed to simulate real-world phishing, malware delivery, deepfakes, smishing/vishing,…☆237Apr 18, 2025Updated last year
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆95Apr 23, 2025Updated last year
- HackTheBox Certified Penetration Tester Specialist Cheatsheet☆748Jul 10, 2024Updated last year
- This repository provides examples of Vulnerable and Mitigated code as per CWE Categorization.☆23May 4, 2024Updated 2 years ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆45Feb 24, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Azure AppHunter is an open-source tool created for security researchers, red teamers and defenders to help them identify excessive privil…☆104Feb 25, 2026Updated 3 months ago
- 免杀木马样本☆107Oct 11, 2025Updated 7 months ago
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆31Sep 23, 2025Updated 8 months ago
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,481Feb 10, 2024Updated 2 years ago
- Various one-off pentesting projects written in Nim. Updates happen on a whim.☆159Updated this week
- ☆24Mar 22, 2025Updated last year
- OOB listener powered by cloudflare workers☆12Apr 13, 2025Updated last year