Alternatives and similar repositories for vulnerable-nginx

Users that are interested in vulnerable-nginx are comparing it to the libraries listed below

• neex / http2smugl
  ☆555Updated 6 months ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆209Updated 2 years ago
• neex / 1u.ms
  ☆182Updated 3 months ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆231Updated 4 months ago
• hakaioffsec / navgix
  navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities
  ☆72Updated 2 years ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆389Updated 3 years ago
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆342Updated 4 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆375Updated last year
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆52Updated this week
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆255Updated 2 years ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆175Updated 11 months ago
• kazet / wpgarlic
  A proof-of-concept WordPress plugin fuzzer
  ☆194Updated last year
• PalindromeLabs / awesome-websocket-security
  Awesome information for WebSockets security research
  ☆276Updated 3 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆636Updated 3 months ago
• Sh1Yo / request_smuggler
  Http request smuggling vulnerability scanner
  ☆229Updated 3 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆130Updated last year
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆372Updated 2 years ago
• hahwul / authz0
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆422Updated 2 weeks ago
• RyanJarv / cdn-proxy
  Bypass CDN and WAF restrictions using CDN re-fronting.
  ☆256Updated 3 years ago
• resyncgg / ripgen
  Rust-based high performance domain permutation generator.
  ☆293Updated last year
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆193Updated 4 months ago
• lunasec-io / Spring4Shell-POC
  This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
  ☆107Updated 3 years ago
• voidz0r / CVE-2022-44268
  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
  ☆217Updated 6 months ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆227Updated last year
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆442Updated last month
• 0x48piraj / jiraffe
  One stop place for exploiting Jira instances in your proximity
  ☆190Updated last year
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆756Updated 3 years ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆318Updated 3 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆169Updated 4 months ago
• PalindromeLabs / STEWS
  A Security Tool for Enumerating WebSockets
  ☆362Updated 3 years ago