dbohannon / MEANBug
An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations and missing or insufficient security controls.
☆16Updated 4 years ago
Alternatives and similar repositories for MEANBug:
Users that are interested in MEANBug are comparing it to the libraries listed below
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- ☆12Updated 7 years ago
- Official CTF for 44CON 2019☆17Updated last year
- A repository for GraphQL Extension for Burp Suite☆57Updated 6 years ago
- ☆25Updated 7 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- Microsoft Excel spreadsheets for consistent security evaluation of Android and iOS mobile applications☆50Updated 9 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- Detect exposed API keys on GitHub commits.☆34Updated 2 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆113Updated 6 years ago
- Web Application Security☆125Updated 10 months ago
- ios source grepper☆39Updated 7 years ago
- A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.☆38Updated 6 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.☆26Updated last month
- Extreme Vulnerable Node Application☆95Updated 6 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆138Updated 4 years ago
- Burp Extension for AWS Signing☆88Updated 3 months ago
- ☆28Updated 8 years ago
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆81Updated 5 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- Manual JavaScript Linting is a Bug☆49Updated 4 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆44Updated 11 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆63Updated 2 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- OAuth plugin for Burp Suite Extender☆42Updated 6 years ago