OWASP / TimeGap-Theory
An auto-scoring capture-the-flag game focusing on TOCTOU vulnerabilities
☆18Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for TimeGap-Theory
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago
- A PoC that shows that Web Vulnerabilities can indeed be interesting☆19Updated 6 years ago
- Fork of https://github.com/PortSwigger/param-miner for header smuggling research☆12Updated 3 years ago
- Miscellaneous one-off scripts, exploits, tools, sample code, ...☆10Updated 5 years ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 3 years ago
- A tool to run nmap against each line in a script.☆16Updated 3 years ago
- Docker container for running OWASP WebGoat.NET application☆11Updated 6 years ago
- ☆19Updated 10 years ago
- OWASP Threat Dragon with Gitlab Integration☆24Updated 7 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- #INFILTRATE19 raptor's party pack.☆30Updated 10 months ago
- Following repository contains source codes used in my two Books.☆10Updated 9 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- A introductory workshop to getting started with fuzzing using american fuzzy lop (AFL)☆22Updated 5 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆13Updated 2 years ago
- Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…☆24Updated last year
- Burp Suite extension to help make Graphql request more readable☆30Updated 6 years ago
- An information gathering tool to collect git emails in version control host services☆11Updated 5 years ago
- ☆21Updated 3 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 2 years ago
- ☆28Updated 7 years ago
- My attempt at writing exploit POCs for various CVEs☆16Updated 4 years ago
- Burp extension for automated handling of CSRF tokens☆16Updated 6 years ago
- Proof of concept about the privilege escalation flaw identified in Google's Osconfig☆10Updated 4 years ago
- This is a collection of ZAProxy Automation Tools and scripts to automate security tests of WEB Applications and WEB Sites☆26Updated last year
- ☆14Updated last year
- Terraform configuration to build a Burp Private Collaborator Server☆29Updated 6 years ago
- Insecure Vulnerable Android Application that helps to learn hacing and securing apps☆21Updated 9 years ago