dbohannon / MEANBugLinks
An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations and missing or insufficient security controls.
☆16Updated 5 years ago
Alternatives and similar repositories for MEANBug
Users that are interested in MEANBug are comparing it to the libraries listed below
Sorting:
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Updated 7 years ago
- ☆12Updated 8 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 3 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆59Updated 6 years ago
- A repository for GraphQL Extension for Burp Suite☆57Updated 7 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns��☆78Updated 5 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆66Updated 2 years ago
- Tools to gather subdomains from Bug Bounty programs☆65Updated 7 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆116Updated 6 years ago
- Files for appsecwiki.com☆120Updated 5 years ago
- "What To" guide for finding vulnerabilities in sites.☆21Updated 8 years ago
- Actarus is a custom tool for bug bounty☆77Updated 6 years ago
- intentionally vulnerable API☆30Updated last year
- Web Application Security☆130Updated last month
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆80Updated 6 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆110Updated 2 years ago
- Code Review Audit Script Scanner☆143Updated 4 months ago
- Microsoft Excel spreadsheets for consistent security evaluation of Android and iOS mobile applications☆50Updated 10 years ago
- Official CTF for 44CON 2019☆17Updated 2 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆76Updated 4 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆34Updated 7 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 8 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 5 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆142Updated last year
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆83Updated 5 years ago
- OAuth plugin for Burp Suite Extender☆43Updated 7 years ago
- All-in-one AWS S3 bucket tool for pentesters.☆74Updated 6 years ago
- ☆16Updated 7 years ago