OWASP / wstgLinks
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
☆7,982Updated last month
Alternatives and similar repositories for wstg
Users that are interested in wstg are comparing it to the libraries listed below
Sorting:
- Official OWASP Top 10 Document Repository☆4,608Updated 6 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,537Updated last year
- OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…☆1,609Updated 2 years ago
- Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management☆4,026Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,891Updated last month
- 🎯 Command Injection Payload List☆3,306Updated 10 months ago
- A list of public penetration test reports published by several consulting firms and academic security groups.☆8,861Updated 11 months ago
- Web application fuzzer☆6,186Updated 9 months ago
- In-depth attack surface mapping and asset discovery☆13,027Updated last week
- Fast web fuzzer written in Go☆14,028Updated last month
- A curated list of various bug bounty tools☆5,012Updated 2 weeks ago
- Contextual Content Discovery Tool☆2,857Updated last year
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆7,936Updated 3 months ago
- HTTP parameter discovery suite.☆5,666Updated 3 months ago
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…☆3,297Updated last month
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,797Updated 3 years ago
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,372Updated last year
- Top disclosed reports from HackerOne☆4,556Updated this week
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆17,570Updated this week
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆23,460Updated this week
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,615Updated 3 years ago
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆5,151Updated last year
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,309Updated 7 months ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,146Updated last year
- Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report☆3,769Updated last week
- The Bug Hunters Methodology☆4,071Updated last year
- ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting☆4,060Updated 2 months ago
- An OOB interaction gathering server and client library☆3,781Updated this week
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,288Updated this week
- Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet☆5,103Updated 5 months ago