OWASP / CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
☆29,336Updated last week
Alternatives and similar repositories for CheatSheetSeries:
Users that are interested in CheatSheetSeries are comparing it to the libraries listed below
- Checklist of the most important security countermeasures when designing, testing, and releasing your API☆22,780Updated 5 months ago
- OWASP Juice Shop: Probably the most modern and sophisticated insecure web application☆11,131Updated this week
- A repository with 3 tools for pwn'ing websites with .git repositories available☆3,981Updated last year
- Find secrets with Gitleaks 🔑☆19,581Updated last week
- 💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline☆58,688Updated this week
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆7,887Updated this week
- Official OWASP Top 10 Document Repository☆4,560Updated 5 months ago
- Awesome XSS stuff☆4,898Updated 5 months ago
- 🥧 HTTPie CLI — modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & mor…☆35,336Updated 4 months ago
- Most advanced XSS scanner.☆13,852Updated last month
- 🧠 Laws, Theories, Principles and Patterns for developers and technologists.☆26,488Updated 2 weeks ago
- The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Nod…☆1,935Updated 10 months ago
- Application Security Verification Standard☆2,975Updated this week
- Generation of diagrams like flowcharts or sequence diagrams from text in a similar manner as markdown☆78,393Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆11,521Updated this week
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆9,781Updated this week
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆64,845Updated 2 weeks ago
- the only cheat sheet you need☆39,270Updated 2 months ago
- The Bug Hunters Methodology☆4,050Updated last year
- Reconnaissance tool for GitHub organizations☆6,021Updated 2 years ago
- The ZAP by Checkmarx Core project☆13,515Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,769Updated 8 months ago
- How to systematically secure anything: a repository about security engineering☆10,072Updated 2 years ago
- An evolving how-to guide for securing a Linux server.☆18,008Updated 6 months ago
- "The mother of all demo apps" — Exemplary fullstack Medium.com clone powered by React, Angular, Node, Django, and many more☆81,482Updated 4 months ago
- The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…☆9,352Updated 6 months ago
- Find, verify, and analyze leaked credentials☆18,845Updated this week
- A curated awesome list of lists of interview questions. Feel free to contribute!☆74,424Updated 8 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,495Updated last year
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,611Updated 5 months ago