citizen-stig / dockerdvwa

Related projects: ⓘ

• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• iriusrisk / RopeyTasks
  Deliberately vulnerable web application
  ☆22Updated 7 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 5 years ago
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 7 years ago
• andresriancho / nimbostratus-target
  This repository holds a target infrastructure you can use for running the nimbostratus tools.
  ☆23Updated 9 years ago
• marco-lancini / docker_burp
  Burp as a Docker Container
  ☆59Updated 4 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated 2 months ago
• m3ssap0 / SpringBreakVulnerableApp
  WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk…
  ☆11Updated 5 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• VirtueSecurity / aws-extender-cli
  AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…
  ☆81Updated 4 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• 0xbharath / slurp-old
  A tool to enumerate S3 buckets manually or via certstream
  ☆80Updated last year
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆42Updated 4 years ago
• cheetz / generateJenkinsExploit
  ☆29Updated 6 years ago
• silentsignal / duncan
  Duncan - Blind SQL injector skeleton
  ☆56Updated 2 years ago
• fuzzdb-project / php-webshells
  ☆19Updated this week
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated 2 months ago
• RhinoSecurityLabs / Presentations
  A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
  ☆37Updated 6 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 6 years ago
• DirectDefense-zz / SuperSerial-Active
  ☆42Updated this week
• hoainam1989 / training-application-security
  This repository for training application security.
  ☆26Updated 5 years ago
• phocean / dockerfile-msf
  This Dockerfile builds a Debian-based Docker container with Metasploit-Framework installed. A quick and easy way to deploy Metasploit on…
  ☆95Updated 5 months ago
• fastly / waf_testbed
  Chef Cookbook which provisions apache+mod_security+owasp-crs
  ☆35Updated 6 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated 4 months ago
• PortSwigger / flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆24Updated 2 years ago
• anshumanbh / kubebot
  A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform
  ☆166Updated last week
• RUB-NDS / JOSEPH
  ☆32Updated 3 years ago
• raesene / TestingScripts
  A More or less Random Collection of Scripts for security Testing.
  ☆63Updated 2 years ago
• pbnj / s3-fuzzer
  🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.
  ☆44Updated 6 years ago