OWASP / OWASP-VWAD
This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
☆879Updated 5 months ago
Alternatives and similar repositories for OWASP-VWAD:
Users that are interested in OWASP-VWAD are comparing it to the libraries listed below
- The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and secu…☆479Updated last month
- Awesome Vulnerable Applications☆1,131Updated 7 months ago
- OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…☆1,573Updated 2 years ago
- Automatically exported from code.google.com/p/domxsswiki☆525Updated 6 years ago
- A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.☆1,069Updated last month
- Web and mobile application security training platform☆1,371Updated 8 months ago
- ZAP Add-ons☆862Updated this week
- This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with t…☆878Updated 2 months ago
- A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.☆1,121Updated last year
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,244Updated 4 years ago
- Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"☆226Updated this week
- Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF☆418Updated last month
- Open-source vulnerability disclosure and bug bounty program database☆992Updated last month
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆734Updated 2 years ago
- Damn Vulnerable NodeJS Application☆720Updated 11 months ago
- Interview questions to screen offensive (red team/pentest) candidates☆879Updated 6 years ago
- Setup script for Regon-ng☆926Updated 4 years ago
- ☆2,252Updated last year
- Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exh…☆668Updated 4 years ago
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.☆1,237Updated 10 months ago
- Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios☆1,336Updated 2 years ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆463Updated 5 months ago
- Content discovery wordlists generated using BigQuery☆565Updated 4 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆1,957Updated 3 years ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆719Updated 2 years ago
- Bugcrowd’s baseline priority ratings for common security vulnerabilities☆470Updated 2 weeks ago
- Awesome Writeups and POCs☆526Updated last month
- ☆563Updated last year
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,223Updated last year
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,393Updated 2 months ago