dbohannon / MEANBugLinks
An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations and missing or insufficient security controls.
☆16Updated 5 years ago
Alternatives and similar repositories for MEANBug
Users that are interested in MEANBug are comparing it to the libraries listed below
Sorting:
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- ☆12Updated 8 years ago
- A repository for GraphQL Extension for Burp Suite☆57Updated 6 years ago
- Microsoft Excel spreadsheets for consistent security evaluation of Android and iOS mobile applications☆50Updated 9 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 5 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 7 years ago
- Reverse engineers GQL Schema and generates template payloads☆46Updated 6 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆63Updated 2 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆114Updated 6 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- Code Review Audit Script Scanner☆140Updated 4 months ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- ☆32Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆104Updated last year
- Web Application Security☆128Updated last year
- ☆16Updated 6 years ago
- Rules for detecting security issues in Angular 1.x☆30Updated 2 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆80Updated 6 years ago
- Tools to gather subdomains from Bug Bounty programs☆64Updated 7 years ago
- intentionally vulnerable API☆30Updated 11 months ago
- The challenge toolbox is a small component which allows you to create, run and check new challenges locally.☆27Updated last year
- Scripts that we use for pentesting☆42Updated 8 years ago
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆123Updated 7 years ago
- Nodejs application intentionally vulnerable to SSRF☆42Updated 2 years ago