GDSSecurity / GWT-Penetration-Testing-ToolsetLinks
A set of tools made to assist in penetration testing GWT applications. Additional details about these tools can be found on my OWASP Appsec DC slides available here: http://www.owasp.org/images/7/77/Attacking_Google_Web_Toolkit.ppt
☆238Updated 5 years ago
Alternatives and similar repositories for GWT-Penetration-Testing-Toolset
Users that are interested in GWT-Penetration-Testing-Toolset are comparing it to the libraries listed below
Sorting:
- ☆181Updated 12 years ago
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆123Updated 7 years ago
- Burp extension to perform Java Deserialization Attacks☆216Updated last year
- Web Application Security☆129Updated last week
- Everything you need to exploit overly permissive crossdomain.xml files☆86Updated 11 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆260Updated 4 years ago
- Code Review Audit Script Scanner☆143Updated 3 months ago
- Project "Flashbang" - An open-source Flash-security helper☆205Updated 10 years ago
- A collection of all the lists, scripts and techniques I use while doing web application penetration tests.☆169Updated 9 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆276Updated 4 years ago
- Turn your Burp suite into headless active web application vulnerability scanner☆155Updated 7 years ago
- A DB of known Web Application Admin URLS, Username/Password Combos and Exploits☆156Updated 10 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- Drag and Drop ClickJacking PoC development assistance tool.☆196Updated 5 years ago
- Mass scanner for the Java serialize bug☆152Updated 6 months ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆256Updated 3 years ago
- It's bloody scantastic☆238Updated 3 years ago
- Pillage a git repo found in an accessible web root☆61Updated 14 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆224Updated 3 years ago
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆210Updated last year
- All my infosec notes I have been building up over the years☆337Updated 10 months ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆136Updated 8 years ago
- Pillage web accessible GIT, HG and BZR repositories☆325Updated 8 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆135Updated 2 years ago
- Albatar is a SQLi exploitation framework in Python☆137Updated 11 months ago
- Improved decoder for Burp Suite☆138Updated 4 years ago
- CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.☆193Updated 10 years ago
- TLS Redirection☆119Updated 8 years ago
- A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.☆152Updated last year
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆227Updated 7 years ago