Web Application Security Checklist
☆134Apr 10, 2025Updated 11 months ago
Alternatives and similar repositories for security_checklist
Users that are interested in security_checklist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Penetration Testing Checklist☆37May 14, 2020Updated 5 years ago
- Useful commands for pentesting Linux and Windows systems☆14Jul 18, 2020Updated 5 years ago
- 🐞 Understand how cross-site scripting occurs, how to detect and exploit XSS vulnerabilities, giving you control of other visitor's brows…☆13Nov 24, 2025Updated 4 months ago
- ☆15Jan 27, 2022Updated 4 years ago
- ☆72Sep 18, 2020Updated 5 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A list of important security checks for GitHub individual and organization accounts☆16Jan 1, 2018Updated 8 years ago
- The ImageMagick Security Policy Evaluator allows developers and security experts to check if an XML Security Policy is hardened against a…☆19Feb 6, 2023Updated 3 years ago
- Collection of useful command line commands☆14Dec 10, 2021Updated 4 years ago
- Check CPAN modules for known security vulnerabilities☆21Mar 9, 2026Updated last month
- ☆14Jan 8, 2026Updated 3 months ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆10Mar 18, 2019Updated 7 years ago
- Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application☆646Apr 10, 2020Updated 5 years ago
- ☆13Aug 1, 2023Updated 2 years ago
- ☆17Jul 9, 2025Updated 9 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- the open source way to do the excercises to be a Full-Stack Cybersecurity Engineer. added with the recent paper in the field of Machine …☆50Nov 2, 2021Updated 4 years ago
- A fast web services mass scanner 🕵🏻♂️☆57Apr 1, 2026Updated last week
- ☆14Dec 3, 2022Updated 3 years ago
- A basic Python program to check Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog☆24Jun 13, 2023Updated 2 years ago
- OWASP Application Security Verification Standard 4.0 Checklist☆33Apr 15, 2019Updated 6 years ago
- A powerful Burp Suite extension that automatically detects JavaScript URLs from HTTP traffic, scans them using TruffleHog for secrets det…☆31Oct 23, 2025Updated 5 months ago
- OWASP Foundation Web Respository☆22Feb 27, 2026Updated last month
- A Multi-Threaded PE Export Collection Utility☆14May 13, 2023Updated 2 years ago
- PoC List☆10Sep 4, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- A collection of Burp Suite Lambda Filters ~ Bambdas☆30Oct 1, 2024Updated last year
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆58Jan 10, 2023Updated 3 years ago
- Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution☆20Sep 2, 2015Updated 10 years ago
- View screenshots as a slideshow over http☆15Mar 13, 2020Updated 6 years ago
- Misc resources for my daily pentesting...☆19Mar 26, 2025Updated last year
- ☆19Jun 24, 2024Updated last year
- GitHub action to generate a CycloneDX SBOM for .NET☆12Jul 15, 2025Updated 8 months ago
- Ansible playbooks that will without any user interaction provision Check Point Security Management server (SM) or Multi-Domain Management…☆11Jan 28, 2022Updated 4 years ago
- checklist for testing the web applications☆287Feb 25, 2023Updated 3 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Find subdomains by searching public certificate records☆16Jun 11, 2024Updated last year
- 可扩展的webshell管理工具☆18Jun 17, 2024Updated last year
- ddos-checker is a tool used to perform a test on a website from a DDOS attack to find security gaps in a website.☆13Oct 16, 2025Updated 5 months ago
- Penetration Testing, Vulnerability Assessment and Red Team Learning☆135Mar 8, 2026Updated last month
- A tool to do basic fingerprinting across a large number of hosts☆11Oct 20, 2020Updated 5 years ago
- A Gradle plugin for checking whether an .apk or an .aar contains OpenSSL versions with known vulnerabilities☆12Nov 28, 2016Updated 9 years ago
- shamelessly ripped from https://github.com/khalilbijjou/WAFNinja/☆19Dec 16, 2016Updated 9 years ago