GDSSecurity / GWT-Penetration-Testing-ToolsetLinks
A set of tools made to assist in penetration testing GWT applications. Additional details about these tools can be found on my OWASP Appsec DC slides available here: http://www.owasp.org/images/7/77/Attacking_Google_Web_Toolkit.ppt
☆236Updated 5 years ago
Alternatives and similar repositories for GWT-Penetration-Testing-Toolset
Users that are interested in GWT-Penetration-Testing-Toolset are comparing it to the libraries listed below
Sorting:
- ☆179Updated 11 years ago
- A DB of known Web Application Admin URLS, Username/Password Combos and Exploits☆155Updated 10 years ago
- Burp extension to perform Java Deserialization Attacks☆214Updated last year
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆123Updated 7 years ago
- A collection of all the lists, scripts and techniques I use while doing web application penetration tests.☆169Updated 9 years ago
- Project "Flashbang" - An open-source Flash-security helper☆205Updated 10 years ago
- Web Application Security☆128Updated last year
- Everything you need to exploit overly permissive crossdomain.xml files☆86Updated 10 years ago
- Code Review Audit Script Scanner☆141Updated 5 months ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆256Updated 4 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆223Updated 2 years ago
- Albatar is a SQLi exploitation framework in Python☆137Updated 8 months ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆275Updated 4 years ago
- It's bloody scantastic☆238Updated 3 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆136Updated 8 years ago
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆227Updated 7 years ago
- Pillage a git repo found in an accessible web root☆61Updated 14 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆139Updated 4 years ago
- TLS Redirection☆120Updated 7 years ago
- ☆128Updated 8 years ago
- Pillage web accessible GIT, HG and BZR repositories☆322Updated 8 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆259Updated 4 months ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆164Updated 5 years ago
- Drag and Drop ClickJacking PoC development assistance tool.☆196Updated 5 years ago
- A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.☆153Updated last year
- Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566☆259Updated last year
- All my infosec notes I have been building up over the years☆337Updated 7 months ago
- ☆120Updated 8 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆254Updated 3 years ago