hdiv / insecure-bank
An insecure example application (Java)
☆30Updated last week
Related projects: ⓘ
- Artwork for all official ZAP swag - posters, stickers, t-shirts etc☆14Updated 6 months ago
- A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…☆39Updated 3 years ago
- ☆22Updated 2 years ago
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆26Updated 5 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆60Updated last year
- A Burp plugin to export findings to DefectDojo☆29Updated 10 months ago
- AWS Security Checks☆36Updated 6 years ago
- A very vulnerable implementation of a GraphQL API.☆56Updated 2 years ago
- ☆30Updated 4 years ago
- Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.☆25Updated 6 years ago
- ☆32Updated last year
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆95Updated 9 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated last year
- Vulnerable webapp testbed☆20Updated 8 years ago
- VyAPI - A cloud based vulnerable hybrid Android App☆84Updated 4 years ago
- Serverless Workshop☆16Updated last year
- code reviews to practice☆16Updated 3 years ago
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆69Updated 7 months ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆56Updated 4 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆110Updated 5 years ago
- A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity☆21Updated 2 months ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Updated 5 years ago
- Scripts and tools for AWS Pentest☆51Updated 3 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- A tool for testing objects' permissions in AWS buckets☆39Updated 3 years ago
- ☆20Updated 5 years ago
- Maturity Model Collaborative project☆13Updated last year
- Ruby command-line interface to Burp Suite's REST API☆59Updated 4 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆45Updated 5 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆64Updated 9 months ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 4 years ago