A collection of web pages, vulnerable to command injection flaws
☆182Mar 5, 2023Updated 3 years ago
Alternatives and similar repositories for commix-testbed
Users that are interested in commix-testbed are comparing it to the libraries listed below
Sorting:
- Tool to scrape LinkedIn☆98Mar 20, 2017Updated 9 years ago
- Vulnerable web site. Used to test sentinel features.☆11Nov 18, 2016Updated 9 years ago
- Taktiksel Bug Hunting Yöntemleri☆47Apr 28, 2017Updated 8 years ago
- Finds all public bug reports on reported on Hackerone☆98Dec 13, 2015Updated 10 years ago
- CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.☆194Jun 25, 2015Updated 10 years ago
- Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe☆14Dec 4, 2015Updated 10 years ago
- Jaidam is an open source penetration testing tool that would take as input a list of domain names, scan them, determine if wordpress or j…☆84Mar 8, 2018Updated 8 years ago
- ☆13Jul 19, 2017Updated 8 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆13Jul 20, 2017Updated 8 years ago
- The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable we…☆16Mar 17, 2018Updated 8 years ago
- See the history of a file from above☆17Aug 1, 2017Updated 8 years ago
- Hello and welcome to my GitHub account. If you'd like to know more about me, this is likely the best place to start☆16Oct 4, 2017Updated 8 years ago
- Simple script to automated the capture and merging process when using a hardware TAP☆15Mar 7, 2013Updated 13 years ago
- Combines the speed of masscan with the reliability and detailed enumeration of nmap☆17Aug 16, 2017Updated 8 years ago
- Repository of Hardening Guides☆628Feb 11, 2026Updated last month
- A Burp Suite extension that checks if a particular URL responds differently to various User-Agent headers☆15Sep 4, 2014Updated 11 years ago
- Lab set-up for learning SQL Injection Techniques☆101Dec 6, 2020Updated 5 years ago
- Chrome Extension for XSS Hunter Payloads☆14Sep 7, 2016Updated 9 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆19Jun 2, 2017Updated 8 years ago
- Advanced HTTP fingerprinting PoC☆45Mar 27, 2017Updated 8 years ago
- Tool to scrape LinkedIn☆10Mar 16, 2017Updated 9 years ago
- A static website template for security pages.☆19Jun 29, 2018Updated 7 years ago
- Vulnerable Windows Driver with exploits which were used for demonstration purposes on Hunting and exploiting bugs in kernel drivers prese…☆13Jan 29, 2013Updated 13 years ago
- ASN reconnaissance script☆133Jan 25, 2024Updated 2 years ago
- Generic Command Exploitation Engine for exploiting web application command-injection bugs,.☆31Mar 18, 2013Updated 13 years ago
- Ease-of-use extension for Web Application penetration testing☆23Jun 20, 2017Updated 8 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bucrowd LevelUp 2017 virtua…☆25Jul 15, 2017Updated 8 years ago
- Automated All-in-One OS Command Injection Exploitation Tool☆5,675Mar 16, 2026Updated last week
- Ruby Oracle Security Scanner☆16Jul 9, 2012Updated 13 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids.☆33Jul 1, 2018Updated 7 years ago
- Duncan - Blind SQL injector skeleton☆60Jan 11, 2022Updated 4 years ago
- Fimap post-exploitation plugin that injects dave Rel1k's AES HTTP Reverse Shell☆16Apr 16, 2014Updated 11 years ago
- ZTE ZXV10 H108L Router with <= V1.0.01_WIND_A01 - Remote root RCE Exploit☆52Sep 21, 2016Updated 9 years ago
- A script for credentials-based attack surface enumeration and general reconnaissance of massive networks☆473Mar 2, 2026Updated 2 weeks ago
- Some helper tools for network pentest☆20Oct 2, 2013Updated 12 years ago
- `wash` is a framework for creating and interfacing with trojans that can establish a "web shell" on a compromised web server. It is desig…☆31Nov 7, 2016Updated 9 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆31Dec 17, 2015Updated 10 years ago
- A high-performance DNS stub resolver for bulk lookups☆24Jun 23, 2017Updated 8 years ago
- OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.☆357Dec 19, 2025Updated 3 months ago