OWASP/www-project-top-25-parameters external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

OWASP/www-project-top-25-parameters

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OWASP/www-project-top-25-parameters)

Close

OWASP / www-project-top-25-parametersView on GitHubMore

• External links
• Readme badge

OWASP Foundation Web Respository

☆26Oct 11, 2025Updated 5 months ago

Alternatives and similar repositories for www-project-top-25-parameters

Users that are interested in www-project-top-25-parameters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Phoenix1112 / ParamReplace

  View on GitHub
  ☆11May 15, 2020Updated 5 years ago
• phlmox / urlgod

  View on GitHub
  Recon tool for URLs discovery
  ☆12Jun 19, 2024Updated last year
• Phoenix1112 / DnsR

  View on GitHub
  ☆12Sep 23, 2023Updated 2 years ago
• Aporlorxl23 / XSScanner

  View on GitHub
  Basic XSS Scanner
  ☆11Jan 21, 2021Updated 5 years ago
• g0ldencybersec / sus_params

  View on GitHub
  ☆212Jul 11, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• alpkeskin / fjwt

  View on GitHub
  An another JWT cracker but really fast!
  ☆12Jan 26, 2023Updated 3 years ago
• PatrikFehrenbach / vilicus

  View on GitHub
  vīlicus is a bug bounty api dashboard
  ☆41Aug 13, 2023Updated 2 years ago
• PortSwigger / copy-as-ffuf-command

  View on GitHub
  Copy as FFUF Command for Burp Suite
  ☆10Jun 12, 2024Updated last year
• Th0h0 / autoredirect

  View on GitHub
  Smart and efficient tool to automate open redirect detection at scale.
  ☆10Mar 21, 2022Updated 4 years ago
• elihypoo414 / favfound

  View on GitHub
  ☆16Apr 21, 2023Updated 2 years ago
• jhaddix / karma_v2

  View on GitHub
  ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)
  ☆19May 3, 2024Updated last year
• snyff / oauthsecurity

  View on GitHub
  OAuth Security Cheatsheet
  ☆41May 12, 2014Updated 11 years ago
• ignis-sec / puff

  View on GitHub
  Clientside vulnerability / reflected xss fuzzer
  ☆149Jul 29, 2023Updated 2 years ago
• Hydragyrum / evil-rmi-server

  View on GitHub
  An evil RMI server that can launch an arbitrary command. May be useful for CVE-2021-44228
  ☆12Dec 12, 2021Updated 4 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• angelofallars / hypo

  View on GitHub
  🚀 Hyper-fast runtime for HTML, the programming language
  ☆21Dec 9, 2023Updated 2 years ago
• kaanatmacaa / CVE-2024-23897

  View on GitHub
  Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)
  ☆21Feb 5, 2024Updated 2 years ago
• jthack / toslack

  View on GitHub
  stdin writes to slack
  ☆14Feb 8, 2020Updated 6 years ago
• cryptohack / code-theme

  View on GitHub
  A Dark theme for VS Code
  ☆13Apr 1, 2021Updated 4 years ago
• Sivnerof / Sources-And-Sinks-Cheatsheet

  View on GitHub
  A cheatsheet for common JavaScript sources and sinks that lead to potential vulnerabilities.
  ☆56Jun 13, 2023Updated 2 years ago
• netlas-io / netlas-scripts

  View on GitHub
  Several scripts are based on the Netlas.io search engine. They will allow you to carry out the reconnaissance phase before the pen test i…
  ☆49May 22, 2025Updated 10 months ago
• knackstedt / stackedit

  View on GitHub
  The best Markdown editor or your money back.
  ☆17Oct 30, 2025Updated 5 months ago
• caido-community / Chatio

  View on GitHub
  An AI-powered assistant for hackers and security professionals built for Caido
  ☆31Jan 24, 2026Updated 2 months ago
• cosmoscrew / gomassdns

  View on GitHub
  A better dns bruteforcer written in golang
  ☆13Nov 4, 2018Updated 7 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• sea-erkin / log-snare

  View on GitHub
  LogSnare: A playground for testing, preventing, and logging IDOR vulnerabilities.
  ☆33Mar 4, 2024Updated 2 years ago
• nuncan / slurp

  View on GitHub
  The original slurp source
  ☆32Nov 25, 2018Updated 7 years ago
• dwisiswant0 / leakz-passive-workflow

  View on GitHub
  Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.
  ☆24Jan 13, 2025Updated last year
• HuntDownProject / KoodousFinder

  View on GitHub
  A simple tool to allows users to search for and analyze android apps for potential security threats and vulnerabilities
  ☆87Apr 4, 2024Updated last year
• projectdiscovery / aix

  View on GitHub
  AIx is a cli tool to interact with Large Language Models (LLM) APIs.
  ☆313Mar 9, 2026Updated 2 weeks ago
• lm-academy / python-devops

  View on GitHub
  This repository contains all the code for my Python for DevOps course
  ☆42Aug 12, 2025Updated 7 months ago
• bugbountyforum / BBF-university

  View on GitHub
  The official BBF university.
  ☆10Oct 12, 2017Updated 8 years ago
• gnothiseautonlw / vulnfetcher

  View on GitHub
  Searchsploit alternative. It differs in that it uses searchengines, can run unattended in the background, plays well with nmap and is abl…
  ☆17Jul 9, 2020Updated 5 years ago
• snyff / Talks

  View on GitHub
  My talks...
  ☆25Feb 27, 2025Updated last year
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• h0tak88r / AutoSubRecon

  View on GitHub
  bash script for automating subdomain enumeration process either passive or active
  ☆29Feb 24, 2026Updated last month
• Moopinger / CLZero

  View on GitHub
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆90Feb 3, 2024Updated 2 years ago
• gryhathack / PowerSploit_Sensitive_Info_Hunter

  View on GitHub
  Modifed PowerSploit/PowerView to search files and match RegEx for Sensitive info (PII, PCI, Passwords, Usernames, SNMP Strings, etc.)
  ☆14Aug 1, 2018Updated 7 years ago
• Oliver9977 / red-team-cheat-sheet

  View on GitHub
  This is to reorganize my notes
  ☆10Apr 26, 2021Updated 4 years ago
• tamimhasan404 / Gau-Expose

  View on GitHub
  It grep subdomains, email/username, build custom wordlist etc from gau results
  ☆50Nov 4, 2022Updated 3 years ago
• dwisiswant0 / osscope

  View on GitHub
  A curated GitHub repository that's in-scope and eligible for bounty.
  ☆21Aug 10, 2022Updated 3 years ago
• putsi / privatecollaborator

  View on GitHub
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆209Jun 25, 2024Updated last year