Alternatives and similar repositories for vulnerable-nginx:

Users that are interested in vulnerable-nginx are comparing it to the libraries listed below

• neex / http2smugl
  ☆533Updated last year
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆363Updated 2 years ago
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆327Updated 3 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆514Updated 2 years ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆703Updated 2 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆351Updated 6 months ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆371Updated 3 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆847Updated 3 years ago
• hahwul / authz0
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆413Updated 3 months ago
• BlackFan / content-type-research
  Content-Type Research
  ☆599Updated last year
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆199Updated 2 months ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆214Updated 3 weeks ago
• glebarez / cero
  Scrape domain names from SSL certificates of arbitrary hosts
  ☆631Updated 10 months ago
• Sh1Yo / request_smuggler
  Http request smuggling vulnerability scanner
  ☆225Updated 2 years ago
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆199Updated 5 months ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆122Updated last year
• neex / 1u.ms
  ☆170Updated 3 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• neex / ghostinthepdf
  ☆159Updated 3 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆265Updated last year
• BuildHackSecure / gitscraper
  A tool which scrapes public github repositories for common naming conventions in variables, folders and files
  ☆289Updated 8 months ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆311Updated 2 years ago
• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆323Updated last year
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆169Updated 10 months ago
• ARPSyndicate / kenzer
  automated web assets enumeration & scanning [DEPRECATED]
  ☆287Updated last year
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆166Updated 2 weeks ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆233Updated 2 months ago
• The-Login / DNS-Reset-Checker
  Tools to assess the DNS security of web applications
  ☆127Updated 2 years ago
• shabarkin / aws-enumerator
  The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…
  ☆197Updated 2 years ago
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆221Updated 2 years ago