hdiv / insecure-bank

Related projects: ⓘ

• zaproxy / zap-swag
  Artwork for all official ZAP swag - posters, stickers, t-shirts etc
  ☆14Updated 6 months ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 3 years ago
• shivsahni / NSDetect
  ☆22Updated 2 years ago
• rahulunair / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆26Updated 5 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆60Updated last year
• DefectDojo / Burp-Plugin
  A Burp plugin to export findings to DefectDojo
  ☆29Updated 10 months ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆36Updated 6 years ago
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆56Updated 2 years ago
• OWASP / owasp-cstg
  ☆30Updated 4 years ago
• PortSwigger / headless-burp
  Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
  ☆25Updated 6 years ago
• we45 / RoboZap
  ☆32Updated last year
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆95Updated 9 months ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated last year
• hvqzao / java-deserialize-webapp
  Vulnerable webapp testbed
  ☆20Updated 8 years ago
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆84Updated 4 years ago
• we45 / Serverless-Workshop
  Serverless Workshop
  ☆16Updated last year
• mgreiler / code-reviews
  code reviews to practice
  ☆16Updated 3 years ago
• mattvaldes / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆69Updated 7 months ago
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆56Updated 4 years ago
• glen-mac / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆110Updated 5 years ago
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated 2 months ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆80Updated 5 years ago
• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆51Updated 3 years ago
• SmeegeSec / Burp-Importer
  Burp Suite Importer - Connect to multiple web servers while populating the sitemap.
  ☆48Updated 4 years ago
• securing / BucketScanner
  A tool for testing objects' permissions in AWS buckets
  ☆39Updated 3 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 5 years ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆13Updated last year
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆45Updated 5 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆64Updated 9 months ago
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 4 years ago