Alternatives and similar repositories for vulnerable-nginx

Users that are interested in vulnerable-nginx are comparing it to the libraries listed below

• neex / http2smugl
  ☆558Updated 10 months ago
• neex / 1u.ms
  ☆185Updated 7 months ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆404Updated 4 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆650Updated 7 months ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆524Updated 3 years ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆237Updated 3 weeks ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆211Updated 2 years ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆774Updated 3 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆175Updated 8 months ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆134Updated 2 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆388Updated last year
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆255Updated 2 years ago
• Sh1Yo / request_smuggler
  Http request smuggling vulnerability scanner
  ☆229Updated 3 years ago
• DontPanicO / jwtXploiter
  A tool to test security of json web token
  ☆286Updated 4 years ago
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆212Updated last year
• 0x48piraj / jiraffe
  One stop place for Jira security reconnaissance and exploitation in your proximity
  ☆199Updated 3 weeks ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆327Updated 3 years ago
• hakaioffsec / navgix
  navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities
  ☆74Updated 2 years ago
• hahwul / authz0
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆426Updated 2 months ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆175Updated last year
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆388Updated 2 years ago
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆348Updated 4 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆230Updated last year
• mogwailabs / DNSrebinder
  A python based minimal DNS server to test/verify DNS rebinding attacks
  ☆70Updated 2 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆945Updated 4 years ago
• nicholasaleks / graphql-threat-matrix
  GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations
  ☆346Updated 7 months ago
• RyanJarv / cdn-proxy
  Bypass CDN and WAF restrictions using CDN re-fronting.
  ☆261Updated 3 years ago
• ngalongc / openapi_security_scanner
  ☆173Updated 4 years ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆151Updated 7 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆452Updated last week