Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
☆100Sep 9, 2023Updated 2 years ago
Alternatives and similar repositories for vucsa
Users that are interested in vucsa are comparing it to the libraries listed below
Sorting:
- 检测host头攻击的Burpsuite被动扫描插件,Burpsuite passive scanning plugin responsible for detecting host header attack☆11Apr 28, 2023Updated 2 years ago
- 基于JavaFX框架做的一款安卓漏洞分析桌面软件,采用了反编译技术与静态分析技术,上传apk包即可分析APP可能包含的风险。☆14Nov 23, 2022Updated 3 years ago
- Just another vulnerable web application.☆36Jul 27, 2024Updated last year
- ☆90Sep 25, 2023Updated 2 years ago
- Web-based GUI for TorBox☆19Jun 13, 2023Updated 2 years ago
- A more useful CSRF PoC generator on Burp Suite☆87Aug 21, 2022Updated 3 years ago
- GO语言漏洞靶场 GIN框架 支持docker一键启动☆79Mar 21, 2023Updated 2 years ago
- Easily-guessable Password Generator for Password Spray Attack☆20Jun 4, 2020Updated 5 years ago
- 对任意http网站添加指定漏洞 目前实现部分漏洞的追加 支持本身http服务 支持反向代理追加☆28Oct 8, 2022Updated 3 years ago
- Collection of fuzzing payloads and corpus from all around added as sub modules☆15May 17, 2025Updated 9 months ago
- 以蓝队为核心针对红队web指纹识别☆16Mar 28, 2025Updated 11 months ago
- FETB : Take URL of File For Analysis using File + ExifTool + Binwalk Commands☆20Feb 2, 2021Updated 5 years ago
- ☆16Dec 16, 2021Updated 4 years ago
- Checks if files is accessible based on the source code.☆16Mar 13, 2024Updated last year
- This is a docker environment ready set up for multiple WooCommerce Plugin vulnerabilities.☆30Dec 1, 2020Updated 5 years ago
- Store and retrieve your passwords from a secure offline database. Check if your passwords has leaked previously to prevent targeted passw…☆33Mar 4, 2023Updated 3 years ago
- 脚本不能用了-给接口干收费了调用微步api实现自动化溯源,---脚本骗人的 目前只实现了 筛选高价值可溯源目标,肉鸡抓取功能☆68Aug 14, 2024Updated last year
- Apache APISIX Remote Code Execution (CVE-2022-24112) proof of concept exploit☆13Mar 16, 2022Updated 3 years ago
- iOS安全与防护☆17May 31, 2025Updated 9 months ago
- Get some useful data from Clouds for your targets☆20Updated this week
- Vulnerable FastAPI in reference to Opensource Web Application Security Project (OWASP) TOP 10: 2021☆16Jan 3, 2022Updated 4 years ago
- 用于爬取谷歌关键词搜索的url,便于红队,src等快速提取☆33May 21, 2024Updated last year
- 蓝队IP封禁Tools工具☆51Sep 4, 2025Updated 6 months ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆142Jun 27, 2023Updated 2 years ago
- MAPS cloud scanner and response parser for Microsoft Defender research.☆74Feb 19, 2026Updated 2 weeks ago
- A script for automatize boolean-based blind SQL injections (MVP).☆54Aug 29, 2022Updated 3 years ago
- 漏洞poc指纹整合管理,漏洞扫描工具☆39Aug 10, 2024Updated last year
- cobaltstrike ��实战案例, 含20个实战案例。插件包在releases中☆34Aug 28, 2023Updated 2 years ago
- Python script to launch burp scans automatically☆32Jul 18, 2021Updated 4 years ago
- Attempt zone transfers on domains☆18Jul 12, 2021Updated 4 years ago
- URLFUZZ By T00ls.Net☆24Jul 4, 2023Updated 2 years ago
- ☆22Nov 3, 2022Updated 3 years ago
- "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.☆20Jul 9, 2023Updated 2 years ago
- A tools for JavaScript Recon☆24Jul 25, 2020Updated 5 years ago
- Windows offline filesystem hacking tool for Linux☆96Jun 24, 2022Updated 3 years ago
- Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.☆105Jun 28, 2022Updated 3 years ago
- Extract domains/subdomains/FQDNs from files and URLs☆19Jun 30, 2020Updated 5 years ago
- 动态链接库加载工具☆20Jan 26, 2022Updated 4 years ago
- Windows Reverse TCP Shell for Hacking and Pentesting☆24Aug 13, 2024Updated last year