adanalvarez / owasp-wstg-trackerLinks
Simple web app to track OWASP WSTG security testing progress
☆22Updated 2 months ago
Alternatives and similar repositories for owasp-wstg-tracker
Users that are interested in owasp-wstg-tracker are comparing it to the libraries listed below
Sorting:
- ☆190Updated 7 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆299Updated 3 weeks ago
- BaldHead is a modular and interactive Active Directory (AD) attack framework built for red teamers and security testers. It automates enu…☆108Updated 5 months ago
- ☆95Updated 7 months ago
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆94Updated 3 months ago
- ☆54Updated last month
- ☆47Updated 8 months ago
- SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source c…☆103Updated 3 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆102Updated 4 months ago
- PAYGoat is a banking application built for educational purposes, focused on exploring and understanding common business logic flaws in fi…☆183Updated 3 months ago
- PowerShell & Python tools developed for CTFs and certification exams☆67Updated 3 months ago
- Find CVEs associated to Linux and public exploits on github☆119Updated 7 months ago
- gRPC Goat is a "Vulnerable by Design" lab created to provide an interactive, hands-on playground for learning and practicing gRPC securit…☆50Updated 2 months ago
- Everything from my OSEP study.☆178Updated 10 months ago
- ☆222Updated 7 months ago
- ☆19Updated this week
- A list of all Active Directory machines from HackTheBox☆67Updated 3 weeks ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆172Updated last week
- 🔍 erroreyes – Lightweight Subdomain Enumeration Tool A Python-based tool that queries crt.sh certificate logs to discover subdomains ass…☆16Updated 6 months ago
- List of tools and resources for pentesting Microsoft Active Directory☆108Updated 4 months ago
- ADKAVEH - One PowerShell script for Active Directory discovery and safe attack simulation.☆33Updated last month
- A fully automated subdomain reconnaissance and sensitive data discovery toolkit.☆45Updated 4 months ago
- Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It …☆64Updated 5 months ago
- A curated list of cloud pentesting resource, contains AWS, Azure, Google Cloud☆135Updated 3 years ago
- The tool 𝗲𝗻𝘂𝗺𝘅 is a framework built for Kali Linux that uses a plethora of existing pentesting tools as plugins in order to simplify…☆38Updated 10 months ago
- AWS IAM Username Enumerator and Password Spraying Tool in Python3☆87Updated 6 months ago
- ☆27Updated 5 months ago
- This repository serves as a curated resource for OffSec's OSEP (PEN-300) certification preparation, containing useful links, materials, a…☆64Updated last year
- Bug Bounty Web and API Payloads☆38Updated last year
- ⚡ XSSuccessor is a powerful, asynchronous Cross-Site Scripting (XSS) detection tool.☆57Updated 10 months ago