bnematzadeh / vulnerable-rest-api
A vulnerable RESTful application written in Node and React based on OWASP API security top 10 2023 edition.
☆51Updated last year
Alternatives and similar repositories for vulnerable-rest-api:
Users that are interested in vulnerable-rest-api are comparing it to the libraries listed below
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆77Updated 2 years ago
- Here we are gather all Nuclei Templates that are Publically available.☆13Updated 9 months ago
- This is a useful Python script for generating a target specific wordlist for fuzzing backup files.☆31Updated last year
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms.☆177Updated this week
- CorsOne - CORS Misconfiguration Discovery Tool☆17Updated 4 months ago
- Smart Setup Server For BugBounty☆25Updated last year
- Reconnaissance & Footprinting framework for BugHunters & RedTeamers☆17Updated 2 weeks ago
- ☆37Updated 4 months ago
- ReconMaster contest - scripts used and a write-up☆86Updated 3 years ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated last year
- A tool for extract Endpoints, URLs and Secrets from contents☆53Updated 9 months ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆67Updated 2 months ago
- Top disclosed reports from HackerOne☆12Updated 3 months ago
- This is a useful Python script for extracting bug bounty or any other write-ups from every RSS.☆124Updated last month
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆43Updated 10 months ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆216Updated 3 months ago
- Simple django rce exploitation with leaked SECRET_KEY variable☆50Updated 2 years ago
- I will share my public tools here and strive to keep them updated in the future. Don't forget to give them a star! Your support is apprec…☆54Updated 9 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆66Updated last week
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆132Updated 11 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆93Updated 4 months ago
- A simple plugin to export JS files from one or multiple targets☆40Updated last year
- go script for check some medium user and tags then add to database and send it to discord server.☆20Updated 2 years ago
- 🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.☆50Updated last year
- A comprehensive collection of various techniques and methods for bypassing Two-Factor Authentication (2FA) security mechanisms.☆40Updated 3 weeks ago
- A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recogniz…☆26Updated last month
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆31Updated last month
- dEX is a powerful tool for transmitting OS command output over DNS. It is equipped with robust mechanisms for handling missing chunks, en…☆11Updated 2 months ago
- Extractify extension is a Chrome extension designed for web security testing, enabling users to efficiently extract JavaScript files and …☆24Updated last month
- One proxy to rule them all☆117Updated 6 months ago