OWASP / wstgLinks
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
β8,347Updated 2 weeks ago
Alternatives and similar repositories for wstg
Users that are interested in wstg are comparing it to the libraries listed below
Sorting:
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.β5,692Updated 3 months ago
- π― Command Injection Payload Listβ3,521Updated last year
- π― Cross Site Scripting ( XSS ) Vulnerability Payload Listβ7,520Updated last year
- Collection of methodology and test case for various web vulnerabilities.β6,602Updated 2 months ago
- In-depth attack surface mapping and asset discoveryβ13,565Updated 2 weeks ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.β8,676Updated last year
- A list of interesting payloads, tips and tricks for bug bounty hunters.β6,260Updated 2 years ago
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communitβ¦β3,409Updated 5 months ago
- Web application fuzzerβ6,280Updated last year
- The Bug Hunters Methodologyβ4,145Updated 2 years ago
- Awesome XSS stuffβ4,963Updated 10 months ago
- Scripted Local Linux Enumeration & Privilege Escalation Checksβ7,586Updated 2 years ago
- OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pβ¦β1,674Updated 2 years ago
- Fast web fuzzer written in Goβ14,736Updated 4 months ago
- Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Managementβ4,466Updated last week
- Git All the Payloads! A collection of web attack payloads.β3,827Updated 2 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies andβ¦β3,849Updated 3 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.β5,866Updated this week
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)β18,359Updated this week
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and nβ¦β10,314Updated this week
- π― SQL Injection Payload Listβ5,795Updated last year
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Eβ¦β8,137Updated 6 months ago
- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systemsβ12,086Updated 10 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β5,720Updated last year
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! π₯β6,871Updated 3 weeks ago
- A list of public penetration test reports published by several consulting firms and academic security groups.β9,127Updated last month
- Official OWASP Top 10 Document Repositoryβ4,770Updated 2 months ago
- An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!β2,042Updated last year
- Penetration tests guide based on OWASP including test cases, resources and examples.β2,670Updated 3 years ago
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,523Updated last week