cyberheartmi9 / awesome-web-securityLinks
☆25Updated 8 years ago
Alternatives and similar repositories for awesome-web-security
Users that are interested in awesome-web-security are comparing it to the libraries listed below
Sorting:
- Various tools for managing bug bounty recon and exploration.☆48Updated 3 years ago
- WhiteBox CMS analysis☆68Updated 2 years ago
- A collection of scripts used to interact with the Burp Rest API☆55Updated 6 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 7 years ago
- My notebook for OSCP Lab☆26Updated 8 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 12 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆72Updated 5 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 8 years ago
- Brute forcer and shell deployer for WildFly☆101Updated 7 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 8 years ago
- PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)☆40Updated 7 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 7 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- Scan for open S3 buckets and dump☆38Updated 7 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆64Updated 6 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- ☆18Updated 8 years ago
- Notes as I learn basic AWS penetration testing☆67Updated 6 years ago
- XXRF Shots - Useful for testing SSRF vulnerability☆74Updated 2 years ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆80Updated 3 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆26Updated 7 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 7 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated 2 years ago
- Scripts for Deploying new server☆49Updated 8 months ago
- a collection of payloads for common webapps☆72Updated 12 years ago
- A number of scripts POC's and problems solved as pentests move along.☆44Updated last year
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆34Updated 7 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆23Updated 6 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆49Updated 3 years ago