Alternatives and similar repositories for vulnerable-app

Users that are interested in vulnerable-app are comparing it to the libraries listed below

• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆61Updated 4 years ago
• hahwul / hbxss
  Security test tool for Blind XSS
  ☆26Updated 5 years ago
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆191Updated last year
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 4 years ago
• TROUBLE-1 / Type-juggling
  Lab that will help you to understand how type juggling vulnerability works.
  ☆22Updated 5 years ago
• 1ndianl33t / 1ndi-hacks
  Bug Bounty Tools
  ☆34Updated 5 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 6 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆51Updated 2 years ago
• thomashartm / burp-aem-scanner
  Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…
  ☆75Updated last year
• Leoid / Burp2Slack
  Push notifications to Slack channel or to custom server based on BurpSuite response conditions.
  ☆17Updated 5 years ago
• synopsys-sig / ATOR-Burp
  ☆87Updated last year
• Rhynorater / reports
  ☆60Updated last year
• goyalvartul / Cloud-Security-Encyclopedia
  ☆11Updated 2 years ago
• melbadry9 / SSLEnum
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆42Updated 2 months ago
• Quitten / XSSor
  XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…
  ☆62Updated 4 years ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 4 years ago
• pentesterland / pentesterland.github.io
  Source for Pentester Land
  ☆39Updated 3 years ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆49Updated 2 years ago
• phefley / burp-javascript-security-extension
  A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates Java…
  ☆26Updated 3 years ago
• beerpwn / CVE
  CVE, reports, research
  ☆15Updated 4 years ago
• OlivierLaflamme / Auditing-Vulnerabilities
  In this repository I'll host my research and methodologies for auditing vulnerabilities
  ☆29Updated 6 years ago
• InitRoot / fransRecon
  Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated…
  ☆31Updated 6 years ago
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆31Updated 6 years ago
• choirurrizal / paraminer
  finds hidden parameters
  ☆23Updated 2 years ago
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆41Updated this week
• hisxo / Wordlist
  Wordlists for Bug Bounty
  ☆23Updated 6 years ago
• yashrs / Hackerone_Private_Hacktivity_Chrome_Extention
  ☆19Updated 4 years ago
• profmoriarity / wfuxx
  web-based-fuzzer
  ☆32Updated 5 years ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆44Updated 2 years ago
• muffyhub / Mindmaps
  ☆19Updated 4 years ago