bnematzadeh / vulnerable-rest-api
A vulnerable RESTful application written in Node and React based on OWASP API security top 10 2023 edition.
☆48Updated 11 months ago
Related projects ⓘ
Alternatives and complementary repositories for vulnerable-rest-api
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆75Updated last year
- always updating☆86Updated 4 months ago
- Top disclosed reports from HackerOne☆12Updated 2 weeks ago
- This is a useful Python script for extracting bug bounty or any other write-ups from Medium.com and other websites (soon).☆94Updated last month
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated last year
- ReconMaster contest - scripts used and a write-up☆83Updated 3 years ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆86Updated 2 months ago
- ☆28Updated last month
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms.☆173Updated this week
- A Lightning-Fast DNS Resolver written in Rust 🦀☆64Updated 6 months ago
- Here we are gather all Nuclei Templates that are Publically available.☆13Updated 6 months ago
- CorsOne - CORS Misconfiguration Discovery Tool☆15Updated 2 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆58Updated last month
- A simple plugin to export JS files from one or multiple targets☆39Updated 11 months ago
- 🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.☆47Updated last year
- This is a useful Python script for generating a target specific wordlist for fuzzing backup files.☆29Updated last year
- A tool for extract Endpoints, URLs and Secrets from contents☆52Updated 6 months ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆125Updated 8 months ago
- ☆66Updated last year
- A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recogniz…☆17Updated 2 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆42Updated 8 months ago
- HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy + Exploit Timing Attacks☆138Updated this week
- Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!☆84Updated 9 months ago
- I will share my public tools here and strive to keep them updated in the future. Don't forget to give them a star! Your support is apprec…☆47Updated 6 months ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆211Updated 3 weeks ago
- go script for check some medium user and tags then add to database and send it to discord server.☆20Updated 2 years ago
- Smart Setup Server For BugBounty☆24Updated last year
- Get some useful data from Clouds for your targets☆16Updated last week
- Robofinder retrieves historical #robots.txt files from #Archive.org, allowing you to uncover previously disallowed directories and paths …☆44Updated last week