appsecco / dvnaLinks
Damn Vulnerable NodeJS Application
☆730Updated last year
Alternatives and similar repositories for dvna
Users that are interested in dvna are comparing it to the libraries listed below
Sorting:
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆468Updated 9 months ago
- Automatically exported from code.google.com/p/domxsswiki☆537Updated 7 years ago
- Repo for all the SKF Docker lab examples☆452Updated 10 months ago
- ☆813Updated last year
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆425Updated 3 years ago
- Repository for hosting my research papers☆509Updated last year
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆471Updated 7 months ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆880Updated 7 months ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆539Updated 2 years ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆657Updated 4 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆455Updated 6 years ago
- Finds unknown classes of injection vulnerabilities☆684Updated last month
- Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"☆226Updated this week
- A script to enumerate virtual hosts on a server.☆690Updated 7 years ago
- Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF☆423Updated 3 months ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,634Updated 3 weeks ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆738Updated 3 years ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆401Updated 6 months ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆545Updated 7 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆561Updated 2 years ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆420Updated last week
- ☆325Updated 7 years ago
- nodejsscan is a static security code scanner for Node.js applications.☆2,469Updated 3 weeks ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,234Updated last year
- A Powerful Subdomain Takeover Tool☆952Updated last year
- The XSS Hunter service - a portable version of XSSHunter.com☆1,526Updated 2 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆727Updated last year
- JShell - Get a JavaScript shell with XSS.☆525Updated 6 years ago
- A small tool that extracts relative URLs from a file.☆747Updated 4 years ago
- Research on GraphQL from an AppSec point of view.☆415Updated 2 years ago