bnematzadeh / vulnerable-rest-apiLinks
A vulnerable RESTful application written in Node and React based on OWASP API security top 10 2023 edition.
☆64Updated 2 years ago
Alternatives and similar repositories for vulnerable-rest-api
Users that are interested in vulnerable-rest-api are comparing it to the libraries listed below
Sorting:
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆78Updated 3 years ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆142Updated 2 years ago
- CorsOne - CORS Misconfiguration Discovery Tool☆25Updated 4 months ago
- Fback is a tool that helps you create target-specific wordlists using a .json pattern.☆64Updated last month
- A Lightning-Fast DNS Resolver written in Rust 🦀☆68Updated last year
- A powerful JavaScript monitoring tool for bug bounty hunters. Track changes in JavaScript files across websites, detect new attack surfac…☆87Updated 8 months ago
- ☆77Updated 7 months ago
- This is a useful Python script for extracting bug bounty or any other write-ups from every RSS.☆142Updated last month
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆148Updated last year
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆99Updated last year
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆80Updated last month
- Gathering All Nuclei Fuzzing Templates in a Single Repo.☆11Updated last year
- ReconMaster contest - scripts used and a write-up☆89Updated 4 years ago
- The nightmare of WAFs & CDNs, Use multi tricks for bypass ratelimit of WAFs & CDNs & Webservers.☆16Updated 8 months ago
- Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!☆97Updated 10 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆83Updated 2 years ago
- A tool for extract Endpoints, URLs and Secrets from contents☆69Updated last week
- 🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.☆54Updated 2 years ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆75Updated 11 months ago
- dEX is a powerful tool for transmitting OS command output over DNS. It is equipped with robust mechanisms for handling missing chunks, en…☆18Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Updated last year
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆154Updated 3 months ago
- Finds graphql queries in javascript files☆68Updated last year
- Tool to parse subdomains from dmarc.live☆148Updated last year
- Collection's of Tech Talk that are presented by me :)☆101Updated last year
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆30Updated last year
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆46Updated last year
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆56Updated 11 months ago
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms.☆212Updated 8 months ago
- Find subdomains on GitLab.☆103Updated last year