bkimminich / webappsec-nutshell

Related projects ⓘ

Alternatives and complementary repositories for webappsec-nutshell

• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 7 years ago
• nnewsom / webbies
  Collection of tools for web recon and enumeration.
  ☆56Updated 9 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• anilyuk / punydomaincheck
  Puny Domain Name Check
  ☆36Updated 5 years ago
• markclayton / bumpster
  The Unofficial Burp Extension for DNSDumpster.com
  ☆70Updated 6 years ago
• wireghoul / sploit-dev
  Exploits and research stuffs
  ☆54Updated last year
• wireghoul / doona
  Network based protocol fuzzer
  ☆68Updated 2 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆77Updated 8 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated 6 months ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 7 years ago
• nccgroup / JDSer-ngng
  A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.
  ☆25Updated 9 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆57Updated 2 years ago
• OWASP / AppSecEurope2017
  ☆13Updated 7 years ago
• znb / Scripts
  General scripts for random stuff
  ☆38Updated 3 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆37Updated 8 years ago
• mubix / cfdb
  Common Findings Database
  ☆100Updated 5 years ago
• ZephrFish / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆25Updated 7 years ago
• PaulSec / VNWA
  Vulnerable Node.js Web Application to pratice with your pentesting skills
  ☆21Updated 7 years ago
• jgamblin / GithubDependencyCheck
  Run DependencyCheck Against Your Orgs GitHub Repos.
  ☆14Updated 6 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆36Updated 7 years ago
• NetSPI / httpillage
  ☆25Updated 7 years ago
• JordanMilne / YMail-Pineapple
  Tools for MITMing Yahoo! Mail with a Wifi Pineapple Mark V and Flash
  ☆27Updated 8 years ago
• SpiderLabs / batchyDNS
  A reconnaissance tool that can quickly discover hostnames from a list of IP addresses.
  ☆38Updated 13 years ago
• yolosec / deserialize-server
  Demo server for testing Java deserialization payloads
  ☆15Updated 8 years ago
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆30Updated 7 years ago
• isaudits / pasv-agrsv
  Passive recon / OSINT automation script
  ☆40Updated 6 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 7 years ago
• rgerganov / xxe-example
  XXE vulnerability demo
  ☆22Updated 10 years ago
• owtf / owtf-docker
  Docker repository for OWTF (64-bit Kali)
  ☆33Updated 4 years ago