WebGoat / WebGoat-Legacy

Related projects: ⓘ

• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆154Updated 3 years ago
• foxglovesec / JavaUnserializeExploits
  ☆492Updated 8 years ago
• SpiderLabs / MCIR
  The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of co…
  ☆436Updated 4 years ago
• metac0rtex / GitHarvester
  ☆311Updated 8 years ago
• adamdoupe / WackoPicko
  WackoPicko is a vulnerable web application used to test web application vulnerability scanners.
  ☆325Updated 3 months ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆339Updated last year
• allfro / BurpKit
  Next-gen BurpSuite penetration testing tool
  ☆454Updated 8 years ago
• sectooladdict / wavsep
  The Web Application Vulnerability Scanner Evaluation Project
  ☆225Updated last year
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆256Updated last month
• RUB-NDS / WS-Attacker
  WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …
  ☆469Updated 2 years ago
• codewatchorg / bypasswaf
  Add headers to all Burp requests to bypass some WAF products
  ☆328Updated 6 years ago
• chuckfw / owaspbwa
  OWASP Broken Web Applications Project
  ☆290Updated 6 months ago
• SkyLined / LocalNetworkScanner
  PoC Javascript that scans your local network when you open a webpage
  ☆156Updated 8 years ago
• musalbas / heartbleed-masstest
  Multi-threaded tool for scanning many hosts for CVE-2014-0160.
  ☆572Updated 9 years ago
• OWASP / OWASP-WebScarab
  OWASP WebScarab
  ☆602Updated 3 years ago
• fuzyll / defcon-vm
  Files from my DEFCON CTF VM.
  ☆267Updated 8 years ago
• himadriganguly / sqlilabs
  Lab set-up for learning SQL Injection Techniques
  ☆92Updated 3 years ago
• pwnwiki / pwnwiki.github.io
  PwnWiki - The notes section of the pentesters mind.
  ☆552Updated 5 years ago
• matthiaskaiser / jmet
  Java Message Exploitation Tool
  ☆492Updated 2 years ago
• julienbedard / browsersploit
  BrowserExploit is an advanced browser exploit pack for doing internal and external pentesting, helping gaining access to internal compute…
  ☆322Updated 7 years ago
• mazen160 / struts-pwn
  An exploit for Apache Struts CVE-2017-5638
  ☆423Updated 6 years ago
• apuigsech / seekret
  Go library and command line to seek for secrets on various sources.
  ☆243Updated 4 years ago
• rapid7 / metasploit-vulnerability-emulator
  Created by Jin Qian via the GitHub Connector
  ☆428Updated 11 months ago
• mozilla / seasponge
  SeaSponge is an accessible threat modelling tool from Mozilla
  ☆275Updated 6 years ago
• sqlmapproject / testenv
  A collection of web pages vulnerable to SQL injection flaws
  ☆342Updated 2 years ago
• tengzhangchao / Struts2_045-Poc
  ☆133Updated this week
• edwardz246003 / IIS_exploit
  ☆652Updated this week
• mwielgoszewski / jython-burp-api
  Develop Burp extensions in Jython
  ☆179Updated 7 years ago
• pentestgeek / smbexec
  ☆237Updated this week
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆198Updated 3 months ago