abigailajohn / VVMALinks
Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It includes vulnerabilities from the OWASP Top 10 API, allowing learners, security professionals, and developers to explore and understand common API security flaws.
☆69Updated 8 months ago
Alternatives and similar repositories for VVMA
Users that are interested in VVMA are comparing it to the libraries listed below
Sorting:
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆103Updated last week
- The repository contains useful GitHub dorks for finding open-source vulnerabilities.☆92Updated last year
- Find CVEs associated to Linux and public exploits on github☆119Updated 10 months ago
- This repository contains cheatsheets and payloads compiled from completing the labs at PortSwigger Academy.☆120Updated last year
- AI for Ethical Hacking - Workshop☆249Updated 2 months ago
- Damn Vulnerable API☆86Updated 4 months ago
- A curated list of cloud pentesting resource, contains AWS, Azure, Google Cloud☆142Updated 3 years ago
- A OWASP Based Checklist With 80+ Test Cases☆155Updated 3 years ago
- ☆54Updated 2 years ago
- ☆58Updated 4 months ago
- INE eCPPTv3 Cheat Sheet / Course Notes. You'll find my comprehensive course notes, which also serve as cheat sheets for the eCPPTv3 cours…☆63Updated 5 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆331Updated 3 months ago
- List of tools and resources for pentesting Microsoft Active Directory☆114Updated 7 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆192Updated 2 weeks ago
- Web app usefullness☆34Updated 3 weeks ago
- Since the SecOps Group has offered free certification to Certified Appsec Practitioner I will be creating notes here. I will be working o…☆77Updated 2 years ago
- INE Training Notes☆55Updated 10 months ago
- ☆244Updated last year
- A fully automated subdomain reconnaissance and sensitive data discovery toolkit.☆46Updated 7 months ago
- OSCP Cheatsheet by Sai Sathvik☆85Updated 2 years ago
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆291Updated last year
- Web Application Penetration Testing☆146Updated 9 months ago
- Recon MindMap (RMM)☆177Updated last year
- PAYGoat is a banking application built for educational purposes, focused on exploring and understanding common business logic flaws in fi…☆185Updated last month
- This repo contains the code for my secure code review challenges. People used this as the primary resource to pass FAANG AppSec interview…☆319Updated last week
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆218Updated 4 months ago
- Notes for the PJPT exam!☆14Updated last year
- Bug Bounty Web and API Payloads☆39Updated last year
- This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used…☆238Updated last year
- My notes while studying for the PNPT from TCM Security.☆83Updated last year