geeksonsecurity / vuln-web-apps
A curated list of vulnerable web applications.
☆255Updated 8 months ago
Related projects: ⓘ
- A collection of templates for bug bounty reporting☆370Updated 3 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆441Updated 4 years ago
- ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on sc…☆309Updated last week
- ☆408Updated last year
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆346Updated last year
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆411Updated 3 years ago
- this html file creates a csrf poc form to any http request.☆265Updated last year
- Simple shell script for automated domain recognition with some tools☆298Updated 3 years ago
- ☆522Updated 7 months ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆515Updated 6 years ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆686Updated last year
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆438Updated 5 years ago
- Web App bug hunting☆549Updated 2 months ago
- A simple web app with a XXE vulnerability.☆220Updated 2 years ago
- this repo contains required files for web application pentests☆181Updated 7 years ago
- Poor (rich?) man's bug bounty pipeline https://dubell.io☆267Updated last year
- 🎯 Open Redirect Payload List☆509Updated 2 months ago
- Damn Vulnerable WordPress☆156Updated 8 months ago
- Combination of all my Resources, Links & Scripts☆235Updated 5 years ago
- Open Redirect Payloads☆571Updated 2 years ago
- ☆349Updated 2 years ago
- a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty☆243Updated 2 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆362Updated 2 years ago
- A DNS Bruteforcing Wordlist Generator☆346Updated last year
- 🎯 RFI/LFI Payload List☆527Updated 2 months ago
- This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.☆234Updated 5 years ago
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆327Updated last year
- Content discovery wordlists generated using BigQuery☆545Updated 4 years ago
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆247Updated last year
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆258Updated last year