bnematzadeh / vulnerable-rest-api
A vulnerable RESTful application written in Node and React based on OWASP API security top 10 2023 edition.
☆52Updated last year
Alternatives and similar repositories for vulnerable-rest-api:
Users that are interested in vulnerable-rest-api are comparing it to the libraries listed below
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆77Updated 2 years ago
- This is a useful Python script for generating a target specific wordlist for fuzzing backup files.☆31Updated last year
- ReconMaster contest - scripts used and a write-up☆86Updated 3 years ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆139Updated last year
- go script for check some medium user and tags then add to database and send it to discord server.☆20Updated 2 years ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆135Updated last year
- Reconnaissance & Footprinting framework for BugHunters & RedTeamers☆18Updated last month
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆94Updated 5 months ago
- Cloud, WEB, API☆131Updated 3 weeks ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆50Updated last week
- ☆52Updated 5 months ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆219Updated 4 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms.☆182Updated this week
- Smart Setup Server For BugBounty☆26Updated last year
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆67Updated last month
- dEX is a powerful tool for transmitting OS command output over DNS. It is equipped with robust mechanisms for handling missing chunks, en…☆14Updated 3 months ago
- AD concepts, attack surfaces and attack vectors notes, slides, video...☆13Updated 2 months ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆67Updated 3 months ago
- I will share my public tools here and strive to keep them updated in the future. Don't forget to give them a star! Your support is apprec…☆53Updated 2 weeks ago
- ☆66Updated last year
- A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recogniz…☆27Updated 2 months ago
- Extractify extension is a Chrome extension designed for web security testing, enabling users to efficiently extract JavaScript files and …☆24Updated 2 months ago
- A tool for extract Endpoints, URLs and Secrets from contents☆55Updated this week
- Here we are gather all Nuclei Templates that are Publically available.☆13Updated 10 months ago
- A comprehensive bug bounty methodology compiled from extensive research, covering web application reconnaissance, checklists, and methods…☆28Updated 3 months ago
- One proxy to rule them all☆117Updated 7 months ago
- This is a useful Python script for extracting bug bounty or any other write-ups from every RSS.☆128Updated 2 months ago