Alternatives and similar repositories for skf-labs

Users that are interested in skf-labs are comparing it to the libraries listed below

• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆316Updated last year
• timip / OSWE
  OSWE Preparation
  ☆624Updated 2 years ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆729Updated last year
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆242Updated 5 years ago
• snoopysecurity / dvws-node
  Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…
  ☆477Updated 8 months ago
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆391Updated 2 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆409Updated 2 years ago
• jbarone / xxelab
  A simple web app with a XXE vulnerability.
  ☆229Updated 3 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆599Updated 11 months ago
• deletehead / awae_oswe_prep
  Stuff done in preparation for AWAE course and OSWE certification
  ☆152Updated 4 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆879Updated 3 years ago
• jdonsec / AllThingsSSRF
  This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
  ☆1,268Updated 4 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆631Updated last year
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆625Updated 7 months ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆518Updated 2 years ago
• wetw0rk / AWAE-PREP
  This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with t…
  ☆893Updated 5 months ago
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆739Updated 4 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• vavkamil / dvwp
  Damn Vulnerable WordPress
  ☆185Updated last year
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆414Updated 4 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• random-robbie / keywords
  ☆362Updated 3 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆424Updated 3 weeks ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆381Updated 3 years ago
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆142Updated 4 years ago
• filedescriptor / untrusted-types
  ☆681Updated 2 years ago
• zigoo0 / JSONBee
  A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
  ☆714Updated last year
• yeswehack / pwn-machine
  PwnMachine is a self hosting solution based on docker aiming to provide an easy to use pwning station for bug hunters.
  ☆316Updated 10 months ago
• eystsen / pentestlab
  Fast and easy script to manage pentesting training apps
  ☆353Updated last year