Want to become an Application Security Engineer? Here's a roadmap to help you get there.
☆35Sep 3, 2022Updated 3 years ago
Alternatives and similar repositories for appsec-engineer-roadmap
Users that are interested in appsec-engineer-roadmap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SDK for building SecDim Play challenges, an open training game for AppSec, DevSecOps, CloudSec, etc.☆30Apr 30, 2026Updated 3 weeks ago
- ☆17Sep 2, 2021Updated 4 years ago
- My cyber security notes.☆14Feb 22, 2025Updated last year
- Some good resources for getting started with application security☆146Jun 2, 2021Updated 4 years ago
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam☆45Jul 13, 2023Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and…☆10Oct 12, 2019Updated 6 years ago
- A Shodan-based tool to discover publicly exposed Ollama instances and list available LLM models.☆22May 27, 2025Updated 11 months ago
- Offensive Security Web Assessor Resources Repo☆39Oct 30, 2023Updated 2 years ago
- TryHackMe CTF writeups☆27Dec 24, 2023Updated 2 years ago
- A Burp Suite extension that converts IP addresses to decimal notation, useful for SSRF bypass and WAF evasion testing. Created by Harshad…☆12Dec 9, 2024Updated last year
- List of web application security☆163Jan 27, 2017Updated 9 years ago
- Bash-based recon automation script that orchestrates tools like Nmap, Dirsearch (Python), and crt.sh to perform port scanning, directory …☆15Jul 22, 2025Updated 10 months ago
- Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and s…☆456Dec 28, 2024Updated last year
- Yet Another Vulnerability Database☆16Jul 23, 2021Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Mass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478☆38Dec 7, 2025Updated 5 months ago
- Misery Loader to bypass modern EDR solutions☆15Dec 20, 2024Updated last year
- Web app usefullness☆35Mar 19, 2026Updated 2 months ago
- Enhanced, Faster, Better version of the exploit☆25Dec 27, 2025Updated 4 months ago
- A step-by-step walkthrough of different machines "pwned" on the CTF-like platform, HackTheBox.☆73Aug 22, 2022Updated 3 years ago
- CVE-2025-55182 React Server Components Remote Code Execution Exploit Tool☆43Dec 5, 2025Updated 5 months ago
- Compatible versions of the frida package for each version of the frida-tools package. Automatically updated through CI/CD☆29May 2, 2026Updated 3 weeks ago
- Monorepo of Labs for the Security Knowledge Framework (SKF)☆44Jun 12, 2025Updated 11 months ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆33Oct 14, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Extract endpoints from specific Git repository for fuzzing☆23Nov 3, 2020Updated 5 years ago
- Example Code Review Exercise☆15Apr 14, 2025Updated last year
- Automate Blind SQL Injection with Python.☆23Aug 20, 2022Updated 3 years ago
- PowerShell Script to automatically abuse the BadSuccessor vulnerability (CVE-2025-53779)☆45Nov 19, 2025Updated 6 months ago
- ☆13Feb 14, 2020Updated 6 years ago
- Public repository of all things cloud security.☆47Sep 20, 2024Updated last year
- GitHub Advanced Security C# Demo Application☆17Aug 8, 2024Updated last year
- A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.☆19Jul 28, 2022Updated 3 years ago
- Convert kirbi ticket from mimikatz into hashcat format to crack it☆13Mar 5, 2019Updated 7 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Go Binance Bot run trades automatically and send notification to slack☆18Aug 30, 2023Updated 2 years ago
- Repositório para utilizar em projetos PHP☆12Feb 23, 2026Updated 3 months ago
- Proxy Management for Security Professionals☆24Mar 25, 2025Updated last year
- Obtain information about network hosts☆23Jul 25, 2024Updated last year
- AI-VAPT is an autonomous AI-driven Vulnerability Assessment & Penetration Testing framework combining traditional VAPT with neural intell…☆95Oct 7, 2025Updated 7 months ago
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆21Feb 5, 2024Updated 2 years ago
- Detect and bypass Istio sidecar☆20Sep 24, 2021Updated 4 years ago