OWASP Foundation Web Respository
☆27Oct 11, 2025Updated 8 months ago
Alternatives and similar repositories for www-project-top-25-parameters
Users that are interested in www-project-top-25-parameters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆11May 15, 2020Updated 6 years ago
- Recon tool for URLs discovery☆12Jun 19, 2024Updated 2 years ago
- ☆12Sep 23, 2023Updated 2 years ago
- Basic XSS Scanner☆11Jan 21, 2021Updated 5 years ago
- BestRecon is a browser-based recon tool to gather information about your target and analyze their security on browser.☆11Jan 1, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆212Jul 11, 2024Updated last year
- An another JWT cracker but really fast!☆12Jan 26, 2023Updated 3 years ago
- by Gary O'Leary-Steele | cloned from https://sentinel.appcheck-ng.com/static/pm/logger.html☆12Sep 16, 2019Updated 6 years ago
- Bug bounty API dashboard aggregating data from HackerOne, Bugcrowd and other platforms☆42Aug 13, 2023Updated 2 years ago
- Smart and efficient tool to automate open redirect detection at scale.☆10Mar 21, 2022Updated 4 years ago
- OAuth Security Cheatsheet☆40May 12, 2014Updated 12 years ago
- Copy as FFUF Command for Burp Suite☆11Jun 12, 2024Updated 2 years ago
- Clientside vulnerability / reflected xss fuzzer☆149Jul 29, 2023Updated 2 years ago
- A collection of all the lists, scripts and techniques I use while doing web application penetration tests.☆30Feb 29, 2016Updated 10 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)☆20May 3, 2024Updated 2 years ago
- An evil RMI server that can launch an arbitrary command. May be useful for CVE-2021-44228☆12Dec 12, 2021Updated 4 years ago
- stdin writes to slack☆13Feb 8, 2020Updated 6 years ago
- A Dark theme for VS Code☆14Apr 1, 2021Updated 5 years ago
- A cheatsheet for common JavaScript sources and sinks that lead to potential vulnerabilities.☆60Jun 13, 2023Updated 3 years ago
- Expand urls into one url for each path depth☆31Jul 29, 2020Updated 5 years ago
- Check IP addresses against known cloud provider IP address ranges☆48Feb 7, 2026Updated 4 months ago
- An AI-powered assistant for hackers and security professionals built for Caido☆36Jan 24, 2026Updated 4 months ago
- Several scripts are based on the Netlas.io search engine. They will allow you to carry out the reconnaissance phase before the pen test i…☆50May 22, 2025Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A better dns bruteforcer written in golang☆13Nov 4, 2018Updated 7 years ago
- LogSnare: A playground for testing, preventing, and logging IDOR vulnerabilities.☆33Mar 4, 2024Updated 2 years ago
- The original slurp source☆31Nov 25, 2018Updated 7 years ago
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.☆28Jan 13, 2025Updated last year
- A simple tool to allows users to search for and analyze android apps for potential security threats and vulnerabilities☆88Apr 4, 2024Updated 2 years ago
- A utility to quickly map IP addresses to their respective ASN☆20Aug 26, 2023Updated 2 years ago
- Ghidra decompiler in your browser☆115May 4, 2026Updated last month
- The official BBF university.☆10Oct 12, 2017Updated 8 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Mar 15, 2019Updated 7 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- My talks...☆25Feb 27, 2025Updated last year
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆91Feb 3, 2024Updated 2 years ago
- Modifed PowerSploit/PowerView to search files and match RegEx for Sensitive info (PII, PCI, Passwords, Usernames, SNMP Strings, etc.)☆14Aug 1, 2018Updated 7 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆50Nov 4, 2022Updated 3 years ago
- A curated GitHub repository that's in-scope and eligible for bounty.☆21Aug 10, 2022Updated 3 years ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆210Jun 25, 2024Updated last year
- bash script for automating subdomain enumeration process either passive or active☆30Feb 24, 2026Updated 3 months ago