OWASP / OWASPWebGoatPHPLinks
A deliberately vulnerable web application for learning web application security.
☆148Updated 9 months ago
Alternatives and similar repositories for OWASPWebGoatPHP
Users that are interested in OWASPWebGoatPHP are comparing it to the libraries listed below
Sorting:
- A collection of web pages, vulnerable to command injection flaws☆180Updated 2 years ago
- The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…☆97Updated 12 years ago
- RIPS - A static source code analyser for vulnerabilities in PHP scripts☆323Updated 4 years ago
- 🤙 Security Trivia that rare people know.☆162Updated 6 years ago
- Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex☆417Updated 11 months ago
- Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn rea…☆457Updated 4 years ago
- The Secure Coding Framework☆271Updated 5 years ago
- An application to catch, search and analyze HTTP secure headers.☆64Updated 4 years ago
- An OSINT tool to find contacts in order to report security vulnerabilities.☆268Updated 6 years ago
- List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built in…☆132Updated 5 years ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆165Updated 6 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆361Updated 11 months ago
- A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any yea…☆78Updated 7 years ago
- The ZAP Heads Up Display (HUD)☆273Updated last month
- Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"☆232Updated this week
- The Cleveridge Subdomain Scanner finds subdomains of a given domain.☆36Updated 5 years ago
- A static analysis tool for security☆359Updated 5 months ago
- Tools of "The Bug Hunters Methodology V2 by @jhaddix"☆202Updated 8 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆110Updated 2 years ago
- Penetration Testing Playbook (PTP)☆176Updated 7 years ago
- Sample vulnerable code and its exploit code☆190Updated 4 years ago
- Damn Vulnerable eXtensive Training Environment☆108Updated 3 years ago
- The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.☆281Updated last year
- A security scanner for HTTP response headers.☆300Updated last year
- A collection of the solutions people wrote for the H1-212 Capture The Flag event☆97Updated 7 years ago
- ☆141Updated 7 years ago
- Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT☆405Updated this week
- Bodhi - Client-side Vulnerability Playground☆123Updated 4 years ago
- OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.☆356Updated last month
- list of sql-injection and XSS strings☆113Updated 10 years ago