The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of configurable vulnerability testbeds.
☆446Aug 7, 2020Updated 5 years ago
Alternatives and similar repositories for MCIR
Users that are interested in MCIR are comparing it to the libraries listed below
Sorting:
- A configurable SQL injection test-bed☆123Jul 19, 2013Updated 12 years ago
- Vulnerable web site. Used to test sentinel features.☆11Nov 18, 2016Updated 9 years ago
- WackoPicko is a vulnerable web application used to test web application vulnerability scanners.☆346May 25, 2024Updated last year
- CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.☆194Jun 25, 2015Updated 10 years ago
- Some works on Nmap Scripts (NSE)☆89Jun 2, 2024Updated last year
- A collection of web pages vulnerable to SQL injection flaws☆352Apr 14, 2022Updated 3 years ago
- A set of XSS vulnerable PHP scripts for testing☆39Feb 10, 2013Updated 13 years ago
- Local UNIX PrivEsc Aggregation☆243Apr 9, 2016Updated 9 years ago
- A modern vulnerable web app☆1,020Mar 11, 2021Updated 4 years ago
- A JBoss script for obtaining remote shell access☆177Aug 7, 2020Updated 5 years ago
- application server attack toolkit☆688Apr 6, 2020Updated 5 years ago
- Inject beef hooks into HTTP traffic and track hooked systems from cmdline☆125Apr 12, 2015Updated 10 years ago
- Damn Small Vulnerable Web☆858Dec 21, 2025Updated 2 months ago
- Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn rea…☆458Dec 6, 2021Updated 4 years ago
- Simple REST-style web service for the CVE searching☆97May 19, 2023Updated 2 years ago
- A lightweight CSRF Toolkit for easy Proof of concept☆172Jun 11, 2014Updated 11 years ago
- DefCon24☆122Sep 2, 2016Updated 9 years ago
- Vulnerable Grails application☆43Jun 12, 2015Updated 10 years ago
- a CMD shell in masm that listens on port 8080☆12Dec 19, 2020Updated 5 years ago
- XSS_Filter_Evasion_Cheat_Sheet 中文版☆126May 18, 2014Updated 11 years ago
- SHELLING - a comprehensive OS command injection payload generator☆446Mar 16, 2020Updated 5 years ago
- ☆17Oct 5, 2014Updated 11 years ago
- Vulnerability Labs for security analysis☆1,170Mar 10, 2021Updated 4 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆260May 16, 2025Updated 9 months ago
- WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …☆490Oct 3, 2024Updated last year
- "Broken NAT" - A suite of tools focused on detecting and interacting with publicly available BNAT scenerios☆25Aug 17, 2014Updated 11 years ago
- A collection of web pages, vulnerable to command injection flaws☆182Mar 5, 2023Updated 3 years ago
- µphisher spear phishing tool (reference implementation)☆40Jun 26, 2020Updated 5 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Feb 18, 2020Updated 6 years ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆823Dec 6, 2017Updated 8 years ago
- A program to monitor network traffic and detect unauthorized sessions.☆42Dec 6, 2010Updated 15 years ago
- BrowserExploit is an advanced browser exploit pack for doing internal and external pentesting, helping gaining access to internal compute…☆331Apr 19, 2017Updated 8 years ago
- SpiderLabs shared Nmap Tools☆231Aug 7, 2020Updated 5 years ago
- MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.☆31May 10, 2016Updated 9 years ago
- This is a SOAP service written in C# that has intentional SQL injection vulnerabilties.☆21Nov 27, 2016Updated 9 years ago
- A repository of tools and scripts related to malware analysis☆252Jul 29, 2016Updated 9 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆278Feb 12, 2021Updated 5 years ago
- Recon, Subdomain Bruting, Zone Transfers☆229Aug 2, 2016Updated 9 years ago