Alternatives and similar repositories for vulnerable-nginx

Users that are interested in vulnerable-nginx are comparing it to the libraries listed below

• neex / http2smugl
  ☆561Updated 10 months ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆388Updated last year
• neex / 1u.ms
  ☆185Updated 7 months ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆135Updated 2 years ago
• DontPanicO / jwtXploiter
  A tool to test security of json web token
  ☆286Updated 4 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆212Updated 2 years ago
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆349Updated 4 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆655Updated 7 months ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆238Updated 3 weeks ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆255Updated 2 years ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆151Updated 7 years ago
• Sh1Yo / request_smuggler
  Http request smuggling vulnerability scanner
  ☆229Updated 3 years ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆175Updated last year
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆389Updated 2 years ago
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆213Updated last year
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆327Updated 3 years ago
• hakaioffsec / navgix
  navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities
  ☆74Updated 2 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆524Updated 3 years ago
• PalindromeLabs / awesome-websocket-security
  Awesome information for WebSockets security research
  ☆299Updated 4 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆129Updated 3 years ago
• benso-io / posta
  🐙 Cross-document messaging security research tool powered by https://enso.security
  ☆301Updated 2 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆230Updated last year
• ngalongc / openapi_security_scanner
  ☆173Updated 4 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆175Updated 8 months ago
• 0x48piraj / jiraffe
  One stop place for Jira security reconnaissance and exploitation in your proximity
  ☆199Updated last month
• janmasarik / resolvers
  List of periodically validated public DNS resolvers
  ☆237Updated this week
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆404Updated 4 years ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆776Updated 3 years ago
• hahwul / authz0
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆426Updated 2 months ago
• mogwailabs / DNSrebinder
  A python based minimal DNS server to test/verify DNS rebinding attacks
  ☆70Updated 2 years ago