appsecco / vulnerable-appsLinks
☆219Updated 3 years ago
Alternatives and similar repositories for vulnerable-apps
Users that are interested in vulnerable-apps are comparing it to the libraries listed below
Sorting:
- Damn Vulnerable eXtensive Training Environment☆105Updated 3 years ago
- Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.☆203Updated last year
- ☆207Updated 4 years ago
- Local File Inclusion Exploitation Tool (mirror)☆127Updated 8 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆259Updated 2 months ago
- Burp extension to perform Java Deserialization Attacks☆212Updated last year
- A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers☆279Updated 6 years ago
- A lab for playing with NoSQL Injection☆133Updated 5 years ago
- A tool to find and exploit servers vulnerable to Shellshock☆333Updated 2 years ago
- Linux post exploitation enumeration and exploit checking tools☆181Updated 5 years ago
- The Hacker Playbook 3 - Web Commands☆84Updated 7 years ago
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...☆232Updated 5 years ago
- Search Exploitable Software on Linux☆230Updated 2 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Updated 5 years ago
- Damn Vulnerable Thick Client App☆150Updated 5 years ago
- A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.☆153Updated last year
- Pemburu AKA GoldDigger.☆71Updated 5 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆252Updated 3 years ago
- Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566☆258Updated last year
- ☆162Updated 7 years ago
- CVE-2017-9506 - SSRF☆189Updated 3 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆134Updated last year
- Sample vulnerable code and its exploit code☆191Updated 4 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated 2 years ago
- Github for the scripts utilised during Penetration test☆235Updated 8 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆152Updated 2 years ago
- Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…☆158Updated last year
- Fuzzing Payloads to Assist in Web Application Testing.☆166Updated 6 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- Penetration testing scripts☆143Updated 7 years ago