NeuraLegion / brokencrystalsLinks
A Broken Application - Very Vulnerable!
☆180Updated this week
Alternatives and similar repositories for brokencrystals
Users that are interested in brokencrystals are comparing it to the libraries listed below
Sorting:
- Websec interview questions by tib3rius answered☆307Updated 2 years ago
- ☆84Updated 2 years ago
- My personal collection of resources (mostly tools and training materials) for source code security audits.☆101Updated last year
- ☆195Updated 2 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆132Updated 3 years ago
- A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…☆315Updated 4 months ago
- This repo contains the code for my secure code review challenges. People used this as the primary resource to pass FAANG AppSec interview…☆296Updated last month
- GraphQL automated security testing toolkit☆332Updated last year
- Docker toolbox for pentest of web based application.☆173Updated last week
- Security Auditor Utility for GraphQL APIs☆585Updated last month
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…☆234Updated 3 years ago
- Awesome information for WebSockets security research☆296Updated 4 years ago
- A OWASP Based Checklist With 80+ Test Cases☆155Updated 3 years ago
- API Security Project aims to present unique attack & defense methods in API Security field☆287Updated 3 years ago
- Repository to house markdown templates for researchers☆213Updated 2 months ago
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆424Updated last year
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆151Updated 9 months ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆324Updated last year
- APIsec|SCAN - Free API security testing using Github actions☆102Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆438Updated last week
- OWASP Code Review Guide Web Repository☆147Updated 3 years ago
- Vulnerable code snippets with fixes for Web2, Web3, API, iOS, Android and Infrastructure-as-Code (IaC)☆165Updated last year
- A collection of content, tips and considerations from the AppSec community to spread the word of DevSecOps and guide aspirants who don't …☆26Updated last year
- 🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️☆226Updated 2 years ago
- Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks☆81Updated 3 years ago
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.☆454Updated 2 years ago
- ☆131Updated 5 years ago
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆240Updated 3 years ago
- 🚀 Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the c…☆219Updated 2 years ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆499Updated last year