Workflow for pentesting web applications.
☆21Feb 19, 2019Updated 7 years ago
Alternatives and similar repositories for WebPentestChecklist
Users that are interested in WebPentestChecklist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Penetration Testing Checklist☆37May 14, 2020Updated 5 years ago
- The focus of this cheat sheet is infrastructure,network penetration testing and web application penetration testing Perform.☆12Jun 24, 2018Updated 7 years ago
- ☆13Feb 26, 2021Updated 5 years ago
- Visualizing Path Finding using A* algorithm☆14Nov 7, 2022Updated 3 years ago
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Miscellaneous examples for use with Cobalt Strike Beacon☆10Nov 19, 2020Updated 5 years ago
- A solid recon tool I use personally.☆30May 12, 2023Updated 2 years ago
- Docker-based platform for conducting MiTM attacks using Responder, NTLMRelayX, and Empire☆21Apr 9, 2025Updated last year
- ☆12Jun 24, 2022Updated 3 years ago
- Hide code from dnSpy and other C# spying tools☆42Oct 18, 2020Updated 5 years ago
- ☆21Mar 16, 2021Updated 5 years ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆11Mar 1, 2022Updated 4 years ago
- Exactly what it sounds like, which is something rad☆22Oct 12, 2022Updated 3 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Hacking with the power of checklists.☆39Dec 18, 2018Updated 7 years ago
- Random code snippets☆12Oct 27, 2023Updated 2 years ago
- ☆72Sep 18, 2020Updated 5 years ago
- leaking net-ntlm with webdav☆26Feb 23, 2021Updated 5 years ago
- Tutorials and Things to Do while Hunting Vulnerability.☆13Aug 30, 2022Updated 3 years ago
- This page should help you with the recon for security issues.☆20Oct 14, 2022Updated 3 years ago
- List of fresh DNS resolvers updated daily☆106Feb 9, 2023Updated 3 years ago
- This is a Poc for BIGIP iControl unauth RCE☆51Mar 17, 2021Updated 5 years ago
- HTTP requests of FrontPage expolit☆25Dec 19, 2013Updated 12 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A simple Cryptojacking malware made with Go and XMRig, for educational purposes only.☆20Apr 19, 2020Updated 5 years ago
- A quick and easy to use security reconnaissance webapp tool, does OSINT, analysis and red-teaming in both passive and active mode. Writte…☆29Apr 25, 2022Updated 3 years ago
- A list of resources for those interested in getting started in bug bounties inspired from https://github.com/nahamsec/Resources-for-Beg…☆170Aug 1, 2020Updated 5 years ago
- Bug Bounty Tools☆34Jul 2, 2020Updated 5 years ago
- Find CVEs that don't have a Detectify modules.☆22Mar 28, 2023Updated 3 years ago
- Refactored/cleaned up Elegoo's penguin bot☆11Jan 21, 2019Updated 7 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Jul 31, 2020Updated 5 years ago
- AMSI Bypass Via the Heap☆107Nov 20, 2020Updated 5 years ago
- ☆18Dec 12, 2020Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Tools and scripts written for personal use☆12Jan 3, 2021Updated 5 years ago
- HTTP request smuggling tools☆18Aug 17, 2020Updated 5 years ago
- Google Dorks and keywords for bug hunters.☆15Aug 16, 2021Updated 4 years ago
- ☆10Feb 5, 2024Updated 2 years ago
- Literally spray blind xss payloads everywhere.☆26Feb 22, 2022Updated 4 years ago
- Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)☆20Aug 9, 2021Updated 4 years ago
- The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform☆60Jun 28, 2020Updated 5 years ago