dbohannon / MEANBugLinks
An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations and missing or insufficient security controls.
☆16Updated 5 years ago
Alternatives and similar repositories for MEANBug
Users that are interested in MEANBug are comparing it to the libraries listed below
Sorting:
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆28Updated 5 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Updated 6 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- A repository for GraphQL Extension for Burp Suite☆57Updated 7 years ago
- ☆16Updated 7 years ago
- Tools to gather subdomains from Bug Bounty programs☆65Updated 7 years ago
- Rules for detecting security issues in Angular 1.x☆30Updated 2 years ago
- ☆32Updated 2 years ago
- ☆12Updated 8 years ago
- Code Review Audit Script Scanner☆141Updated last month
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆65Updated 2 years ago
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆80Updated 6 years ago
- Actarus is a custom tool for bug bounty☆77Updated 6 years ago
- GraphQL application security testing helper☆20Updated 2 years ago
- intentionally vulnerable API☆30Updated last year
- Web Application Security☆129Updated last year
- Nodejs application intentionally vulnerable to SSRF☆42Updated 2 years ago
- Externalize Java application access to protected resources as log messages.☆43Updated 3 weeks ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 6 years ago
- VyAPI - A cloud based vulnerable hybrid Android App☆86Updated 5 years ago
- OASAM is the acronym of Open Android Security Assessment Methodology and its purpose is to become a reference framework on Android applic…☆85Updated 3 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆106Updated last year
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 7 years ago
- The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…☆67Updated 5 years ago
- Proof-of-concept CORS exploitation tool.☆35Updated 6 years ago
- Microsoft Excel spreadsheets for consistent security evaluation of Android and iOS mobile applications☆50Updated 10 years ago