A vulnerable RESTful application written in Node and React based on OWASP API security top 10 2023 edition.
☆64Nov 25, 2023Updated 2 years ago
Alternatives and similar repositories for vulnerable-rest-api
Users that are interested in vulnerable-rest-api are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- comx is a tool to compare the contents of two files and return the unique data☆10May 20, 2023Updated 2 years ago
- ☆31Jul 26, 2023Updated 2 years ago
- Smart Setup Server For BugBounty☆26Aug 21, 2023Updated 2 years ago
- ☆23Jul 24, 2023Updated 2 years ago
- Get some useful data from Clouds for your targets☆20Mar 22, 2026Updated last week
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- TLDFinder is a Python package that identifies valid top-level domains (TLDs) for a list of domains with wildcard characters in the TLD.☆24Jul 2, 2023Updated 2 years ago
- The main goal of this repo is to learn about the gRPC communication patterns and hunt for vulnerabilities in the gRPC-Web app to improve …☆10Jul 10, 2024Updated last year
- Extractify extension is a Chrome extension designed for web security testing, enabling users to efficiently extract JavaScript files and …☆30Dec 10, 2024Updated last year
- Burp suite extension which help you to find inconsistency between content-type header and body parsers☆11Sep 14, 2025Updated 6 months ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆239Oct 15, 2024Updated last year
- ☆14Mar 20, 2025Updated last year
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms.☆212Apr 21, 2025Updated 11 months ago
- React Suspended is an educational frontend application riddled with security vulnerabilities☆10Jan 29, 2024Updated 2 years ago
- I will share my public tools here and strive to keep them updated in the future. Don't forget to give them a star! Your support is apprec…☆73Feb 4, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- This is a Burp Suite extension that automatically decodes unicode escape sequences. It supports Persian, Chinese, Russian and other langu…☆12Jan 23, 2024Updated 2 years ago
- fAllParams is a powerful tool for extracting all parameters from given URLs.☆33Jul 7, 2023Updated 2 years ago
- ☆33Apr 28, 2025Updated 11 months ago
- A tool for extract Endpoints, URLs and Secrets from contents☆67Feb 2, 2026Updated last month
- bash script for automating subdomain enumeration process either passive or active☆29Feb 24, 2026Updated last month
- 🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.☆54May 14, 2023Updated 2 years ago
- This is the latest version of BinHunter paper☆13Apr 13, 2025Updated 11 months ago
- A new append-only-log for SSB purposes☆16Mar 15, 2023Updated 3 years ago
- 密码生成工具、password maker、password generator☆15Apr 20, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Plugin to deal with diagnostics_channel on Fastify☆20Feb 12, 2025Updated last year
- A go-exploit to scan for Juniper firewalls vulnerable to CVE-2023-36845☆61Feb 14, 2025Updated last year
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆55Nov 21, 2025Updated 4 months ago
- Pre-Auth Exploit for CVE-2024-40711☆55Sep 15, 2024Updated last year
- A step-by-step Android penetration testing guide for beginners☆42Nov 15, 2025Updated 4 months ago
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Sep 11, 2023Updated 2 years ago
- ☆15Jun 23, 2023Updated 2 years ago
- A microservice to anonymize strings☆16May 27, 2020Updated 5 years ago
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆219Mar 21, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆1,192Nov 25, 2024Updated last year
- A Python script designed to monitor bug bounty programs for any changes and promptly notify users.☆196Apr 25, 2024Updated last year
- An ongoing & curated collection of awesome vulnerability scanning software, libraries and frameworks, best guidelines, technical resource…☆14Feb 7, 2022Updated 4 years ago
- i will upload more templates here to share with the comunity.☆569Apr 17, 2024Updated last year
- Comprehensive Crawling☆19Jul 16, 2023Updated 2 years ago
- Javascript codemods, powered by a high-performance Rust parser integrated via NIFs☆18Mar 10, 2026Updated 2 weeks ago
- A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recogniz…☆30Mar 9, 2026Updated 2 weeks ago