detectify / cs-challenge

Related projects: ⓘ

• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆81Updated 3 years ago
• michael1026 / trashcompactor
  ☆64Updated last year
• rinetd / BurpSuite-1
  BurpSuite using the document and some extensions
  ☆65Updated 4 years ago
• dinosn / synackDUO
  Python Duo Push API
  ☆28Updated 2 months ago
• v1ll41n / H1-Report-Finder
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42Updated 4 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆94Updated 2 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆46Updated last year
• synack / wstg
  The Web Security Testing Guide is a comprehensive open source guide to testing the security of web applications and web services.
  ☆25Updated last year
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• gexpose / synackAPI
  ☆82Updated this week
• codingo / dooked
  DNS and Target HTTP History Local Storage and Search
  ☆63Updated 3 years ago
• Ophion-Security / sret
  ☆99Updated this week
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆88Updated 5 months ago
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• ozguralp / synackapi
  ☆60Updated last month
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆59Updated 4 years ago
• Rhynorater / reports
  ☆56Updated 2 months ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆41Updated 7 months ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆93Updated 3 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆81Updated last year
• honoki / wilson-cloud-respwnder
  WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…
  ☆51Updated 2 weeks ago
• DK9510 / web-app-exploitation
  ☆18Updated last year
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 3 years ago
• Vanshal / AWAE-PREP
  ☆16Updated 3 years ago
• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆100Updated 2 months ago
• areyou1or0 / Infosec-Interview-Questions
  ☆39Updated this week
• honoki / bbrf-dashboard
  ☆35Updated 2 weeks ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago