Alternatives and similar repositories for vulnerable-node

Users that are interested in vulnerable-node are comparing it to the libraries listed below

• adamdoupe / WackoPicko
  WackoPicko is a vulnerable web application used to test web application vulnerability scanners.
  ☆333Updated last year
• CSPF-Founder / JavaVulnerableLab
  Vulnerable Java based Web Application
  ☆268Updated 11 months ago
• cr0hn / nosqlinjection_wordlists
  This repository contains payload to test NoSQL Injections
  ☆360Updated 4 years ago
• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆731Updated last year
• SecurityInnovation / AuthMatrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆629Updated last year
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆537Updated 7 years ago
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆657Updated 4 years ago
• ajinabraham / Node.Js-Security-Course
  Contents for Node.Js Security Course
  ☆339Updated 4 years ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆684Updated last month
• stamparm / DSVW
  Damn Small Vulnerable Web
  ☆819Updated 11 months ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆488Updated last year
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆291Updated 2 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆206Updated 11 months ago
• allfro / BurpKit
  Next-gen BurpSuite penetration testing tool
  ☆462Updated 9 years ago
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆633Updated 6 years ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆395Updated 7 years ago
• orangetw / awesome-jenkins-rce-2019
  There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
  ☆603Updated 6 years ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆545Updated 7 years ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,084Updated 5 months ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆421Updated this week
• Coalfire-Research / java-deserialization-exploits
  A collection of curated Java Deserialization Exploits
  ☆593Updated 4 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆411Updated 2 months ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆425Updated 5 years ago
• orangetw / Tiny-URL-Fuzzer
  A tiny and cute URL fuzzer
  ☆395Updated 2 years ago
• dpnishant / raptor
  Web-based Source Code Vulnerability Scanner
  ☆356Updated 7 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆536Updated 4 years ago
• federicodotta / Java-Deserialization-Scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆785Updated 3 years ago
• bugbountyforum / XSS-Radar
  ☆326Updated 7 years ago
• bcoles / ssrf_proxy
  SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.
  ☆462Updated 7 years ago
• khalilbijjou / WAFNinja
  WAFNinja is a tool which contains two functions to attack Web Application Firewalls.
  ☆812Updated 7 years ago