WebGoat / WebGoat-Legacy
Legacy WebGoat 6.0 - Deliberately insecure JavaEE application
☆324Updated 5 months ago
Related projects: ⓘ
- 7.x - The WebGoat STABLE lessons supplied by the WebGoat team.☆154Updated 3 years ago
- ☆492Updated 8 years ago
- The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of co…☆436Updated 4 years ago
- ☆311Updated 8 years ago
- WackoPicko is a vulnerable web application used to test web application vulnerability scanners.☆325Updated 3 months ago
- ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…☆339Updated last year
- Next-gen BurpSuite penetration testing tool☆454Updated 8 years ago
- The Web Application Vulnerability Scanner Evaluation Project☆225Updated last year
- The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.☆256Updated last month
- WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …☆469Updated 2 years ago
- Add headers to all Burp requests to bypass some WAF products☆328Updated 6 years ago
- OWASP Broken Web Applications Project☆290Updated 6 months ago
- PoC Javascript that scans your local network when you open a webpage☆156Updated 8 years ago
- Multi-threaded tool for scanning many hosts for CVE-2014-0160.☆572Updated 9 years ago
- OWASP WebScarab☆602Updated 3 years ago
- Files from my DEFCON CTF VM.☆267Updated 8 years ago
- Lab set-up for learning SQL Injection Techniques☆92Updated 3 years ago
- PwnWiki - The notes section of the pentesters mind.☆552Updated 5 years ago
- Java Message Exploitation Tool☆492Updated 2 years ago
- BrowserExploit is an advanced browser exploit pack for doing internal and external pentesting, helping gaining access to internal compute…☆322Updated 7 years ago
- An exploit for Apache Struts CVE-2017-5638☆423Updated 6 years ago
- Go library and command line to seek for secrets on various sources.☆243Updated 4 years ago
- Created by Jin Qian via the GitHub Connector☆428Updated 11 months ago
- SeaSponge is an accessible threat modelling tool from Mozilla☆275Updated 6 years ago
- A collection of web pages vulnerable to SQL injection flaws☆342Updated 2 years ago
- ☆133Updated this week
- ☆652Updated this week
- Develop Burp extensions in Jython☆179Updated 7 years ago
- ☆237Updated this week
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆198Updated 3 months ago