☆1,409Nov 13, 2020Updated 5 years ago
Alternatives and similar repositories for firing-range
Users that are interested in firing-range are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,895Nov 10, 2023Updated 2 years ago
- Browser's XSS Filter Bypass Cheat Sheet☆1,152May 6, 2017Updated 9 years ago
- The cheat sheet about Java Deserialization vulnerabilities☆3,179May 26, 2023Updated 2 years ago
- rev-door is a small backdoor with only ONE line of PHP code, which takes command from POST data and execute it on server side. It is like…☆26May 12, 2016Updated 9 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,152Apr 21, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Welcome to the XSS Challenge Wiki!☆1,594Jun 24, 2020Updated 5 years ago
- htcap is a web application scanner able to crawl single page application (SPA) recursively by intercepting ajax calls and DOM changes.☆626Oct 11, 2021Updated 4 years ago
- This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.☆19Mar 12, 2020Updated 6 years ago
- ☆2,324Dec 8, 2023Updated 2 years ago
- Cross-site request forgery Learning Platform☆21Sep 13, 2014Updated 11 years ago
- A Tool for Domain Flyovers☆5,930May 22, 2022Updated 3 years ago
- The Web Application Vulnerability Scanner Evaluation Project☆241Oct 5, 2022Updated 3 years ago
- REST/JSON interface to Burp Suite☆33Oct 12, 2020Updated 5 years ago
- Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告☆107Dec 13, 2017Updated 8 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,488Jan 9, 2025Updated last year
- The Bug Hunters Methodology☆4,319Aug 1, 2023Updated 2 years ago
- ☆697Jul 4, 2022Updated 3 years ago
- Awesome XSS stuff☆5,105Oct 30, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,493Oct 12, 2024Updated last year
- Most advanced XSS scanner.☆14,935Apr 26, 2025Updated last year
- Web Input Vector Extractor Teaser☆131Jan 6, 2022Updated 4 years ago
- Gryffin is a large scale web security scanning platform.☆2,059Feb 12, 2021Updated 5 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,934Sep 27, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- a CMD shell in masm that listens on port 8080☆12Dec 19, 2020Updated 5 years ago
- A container repository for my public web hacks!☆2,025Oct 12, 2022Updated 3 years ago
- A modern vulnerable web app☆1,028Mar 11, 2021Updated 5 years ago
- HTTPLeaks - All possible ways, a website can leak HTTP requests☆2,103Jan 3, 2026Updated 4 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆8,871Dec 4, 2025Updated 5 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,715Jan 5, 2026Updated 4 months ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆804Nov 7, 2021Updated 4 years ago
- A Python Framework For NoSQL Scanning and Exploitation☆602Dec 6, 2024Updated last year
- Vulnerability scanner based on vulners.com search API☆888Oct 1, 2025Updated 7 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Web application fuzzer☆6,479Jan 21, 2026Updated 3 months ago
- XSS spider - 66/66 wavsep XSS detected☆1,742Jun 13, 2024Updated last year
- This tool can be used to brute discover GET and POST parameters☆1,394Aug 24, 2019Updated 6 years ago
- Automated All-in-One OS Command Injection Exploitation Tool☆5,722May 1, 2026Updated last week
- Git All the Payloads! A collection of web attack payloads.☆3,938May 15, 2023Updated 2 years ago
- In-depth attack surface mapping and asset discovery☆14,526Apr 17, 2026Updated 3 weeks ago
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,422Mar 26, 2026Updated last month