Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It includes vulnerabilities from the OWASP Top 10 API, allowing learners, security professionals, and developers to explore and understand common API security flaws.
☆71Jun 5, 2025Updated last year
Alternatives and similar repositories for VVMA
Users that are interested in VVMA are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Penstaller: A Python tool to automate the installation of essential bug bounty and pentesting tools. With one command, it sets up tools f…☆18Mar 14, 2025Updated last year
- This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer whil…☆68Apr 25, 2025Updated last year
- Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…☆50Jul 8, 2025Updated 11 months ago
- This is a Python script that generates a staged payload that fully bypasses MS Defender. Can potentially be used for EDRs with some custo…☆83Mar 31, 2026Updated 2 months ago
- Learn how to intercept flutter apps☆25Jan 19, 2024Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source c…☆113Apr 26, 2026Updated last month
- A cross-platform desktop application for HTTP/HTTPS traffic interception and analysis, built with Go. Features modern UI, traffic manipul…☆222Apr 28, 2025Updated last year
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆15Apr 2, 2026Updated 2 months ago
- A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure cod…☆749May 5, 2026Updated last month
- Custom Amsi Bypass by patching AmsiOpenSession function in amsi.dll☆53Jun 16, 2025Updated last year
- A modern tool written in python for hunting open redirection☆31Aug 8, 2023Updated 2 years ago
- Azure AD (Entra ID) enumeration tool. Find related domains and tenant information in a simple way.☆35Oct 4, 2024Updated last year
- Proxll is a tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h☆41Oct 8, 2024Updated last year
- CyberPreacher cloud project collection☆15Dec 21, 2025Updated 5 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆102Apr 4, 2025Updated last year
- My notes containing the Certified Red Team Professional Course☆77Sep 7, 2024Updated last year
- Beginner Road map that paves the way for your journey into the captivating world of cyber security based on job roles.☆25Jan 27, 2024Updated 2 years ago
- You can gather useful information accounts by username across all types networks ( which also include social media)☆30Oct 19, 2023Updated 2 years ago
- My notes while studying for the PNPT from TCM Security.☆83Mar 30, 2024Updated 2 years ago
- ☆80Apr 28, 2025Updated last year
- This project documents my hands-on journey in learning and conducting internal Active Directory (AD) penetration testing. The exercises s…☆19Apr 19, 2025Updated last year
- CTF Helper is a powerful, modular Command Line Interface (CLI) tool designed for Capture The Flag (CTF) competitions and cybersecurity ta…☆34May 15, 2026Updated last month
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆11Sep 15, 2024Updated last year
- ☆53Mar 13, 2025Updated last year
- ☆12Mar 8, 2025Updated last year
- free5GC official site☆15May 20, 2026Updated 3 weeks ago
- These are installation notes based on Mayfly's installation notes. They are more streamlined for Vagrant as I did not take the Docker rou…☆27Jun 19, 2024Updated last year
- An Android app to easily manage Frida server on your device or emulator☆124Jan 3, 2026Updated 5 months ago
- ☆12Dec 6, 2024Updated last year
- Collection of Notes and CheatSheets used for Red teaming Certs☆502Feb 13, 2023Updated 3 years ago
- When Your Vision Reaches Beyond IAM Boundary Scope in AWS Cloud☆47Dec 7, 2025Updated 6 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Active Directory share enumeration tool☆12Apr 28, 2025Updated last year
- ☆473Jun 25, 2025Updated 11 months ago
- A simple (scraper) tool for remove background on image☆12Mar 8, 2022Updated 4 years ago
- This tool is designed to seamlessly convert Postman collections into OpenAPI schemas. This conversion is essential for API security testi…☆12Sep 3, 2024Updated last year
- 🔍 erroreyes – Lightweight Subdomain Enumeration Tool A Python-based tool that queries crt.sh certificate logs to discover subdomains ass…☆17May 8, 2025Updated last year
- Web Crawler for Identifying Entry Points☆11Mar 26, 2024Updated 2 years ago
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆64Jul 7, 2025Updated 11 months ago