Soham7-dev / AspGoatLinks
AspGoat is an intentionally vulnerable ASP.NET Core application for learning and practicing web application security.
☆93Updated last month
Alternatives and similar repositories for AspGoat
Users that are interested in AspGoat are comparing it to the libraries listed below
Sorting:
- ☆99Updated last year
- Damn Vulnerable C# Application (API)☆78Updated last year
- The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…☆54Updated 5 months ago
- Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github …☆21Updated last year
- Webarchive is a Go package for pentesters and developers to interacting with the Wayback Machine's CDX API and integrate web archive util…☆10Updated last year
- ☆56Updated 2 months ago
- gRPC Goat is a "Vulnerable by Design" lab created to provide an interactive, hands-on playground for learning and practicing gRPC securit…☆50Updated 3 months ago
- A deliberately vulnerable mobile banking application designed for practicing mobile security testing. Features common vulnerabilities fou…☆67Updated 3 weeks ago
- Real-Time JavaScript reverse engineering and debugging suite - Burp Suite, but for JavaScript☆17Updated 5 months ago
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆240Updated last year
- Collected resources for OSWA preparation.☆24Updated 2 years ago
- Vulnerable API for research and education☆49Updated last week
- ☆192Updated 8 months ago
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆85Updated 10 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆149Updated 8 months ago
- SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source c…☆106Updated 4 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆66Updated 6 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆50Updated 5 months ago
- Generate wordlists from Github repositories☆105Updated 2 years ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆317Updated 2 months ago
- My personal collection of resources (mostly tools and training materials) for source code security audits.☆98Updated last year
- Vulnerable code snippets with fixes for Web2, Web3, API, iOS, Android and Infrastructure-as-Code (IaC)☆164Updated last year
- The Most Advanced Client-Side Prototype Pollution Scanner☆243Updated last week
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆101Updated 5 months ago
- ☆106Updated last year
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆131Updated 10 months ago
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆183Updated 9 months ago
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆95Updated 4 months ago
- The vulnerable version of WordPress that is updated monthly.☆140Updated 11 months ago
- jxscout superpowers JavaScript analysis for security researchers☆319Updated 3 months ago