NeuraLegion / broken_crystals
A vulnerable Application in crystal
☆20Updated 3 years ago
Related projects: ⓘ
- Web Application Firewall (WAF) Detector☆33Updated last year
- Application and Service Fingerprinting☆131Updated last year
- ☆72Updated 2 years ago
- A Broken Application - Very Vulnerable!☆120Updated this week
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆60Updated last year
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆198Updated last year
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆100Updated 4 years ago
- Scans npmjs.org for npm packages that can be taken over☆18Updated 2 years ago
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆26Updated 5 years ago
- ☆18Updated 4 years ago
- ☆270Updated 2 years ago
- Push notifications for passive DNS data☆105Updated 8 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆95Updated 9 months ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆301Updated 5 years ago
- Fuzzing Payloads to Assist in Web Application Testing.☆165Updated 5 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆121Updated 3 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆344Updated 3 years ago
- GraphQL security testing tool☆113Updated 2 years ago
- Python utility to takeover domains vulnerable to AWS NS Takeover☆82Updated last year
- A ruby gem for defending against Server Side Request Forgery (SSRF) attacks☆78Updated last year
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆384Updated 7 years ago
- ☆171Updated last year
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆279Updated 2 months ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆110Updated last year
- A tool geared towards pentesting APIs using OpenAPI definitions.☆167Updated last year
- ☆222Updated 2 months ago
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆82Updated 5 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆39Updated 2 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 5 years ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆188Updated 4 years ago