cneill / appsec-resourcesLinks
Resources for developers and security engineers to learn the ropes of application security
☆97Updated 6 years ago
Alternatives and similar repositories for appsec-resources
Users that are interested in appsec-resources are comparing it to the libraries listed below
Sorting:
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆168Updated 2 years ago
- A regex based source code scanner.☆129Updated 8 years ago
- A project designed to parse public source code repositories and find various types of vulnerabilities.☆192Updated 7 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- ☆92Updated 6 years ago
- PwnableWeb is a suite of web applications for use in information security training.☆87Updated 11 years ago
- User, contributor and developer friendly vulnerability database☆128Updated 6 years ago
- Web Application Security☆127Updated last year
- Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps a…☆74Updated 7 years ago
- Proof-of-concept program that is able to to hijack/hook/proxy Python module(s) thanks to $PYTHONPATH variable☆152Updated 8 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …☆111Updated 7 years ago
- This is a bundle of python and bash penetration testing tools for recon and information gathering.☆80Updated 9 years ago
- ☆122Updated 7 years ago
- A collection of all the lists, scripts and techniques I use while doing web application penetration tests.☆168Updated 9 years ago
- PoC for an adaptive parallelised DNS prober☆44Updated 7 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆25Updated 8 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 7 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆139Updated 11 months ago
- Deprecated please use https://github.com/Netflix/sleepy-puppy☆95Updated 6 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- A weekly challenge where we share some code and you find a bug in it.☆71Updated 9 years ago
- Database of websites for penetration testing☆176Updated 5 years ago
- ☆32Updated 9 years ago
- ☆90Updated 5 months ago
- A Django vulnerable Web application for testing the w3af framework☆32Updated 2 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- ☆44Updated 7 years ago
- A security tool to fingerprint PNG libraries used by web applications☆81Updated 6 years ago