iixlabs / websec-trainingLinks
A collection of vulnerable web applications in Node.js to practice security fundamentals
☆13Updated 9 years ago
Alternatives and similar repositories for websec-training
Users that are interested in websec-training are comparing it to the libraries listed below
Sorting:
- Cross Distribution Exploit Testing☆28Updated 9 years ago
- REST/JSON interface to Burp Suite☆33Updated 4 years ago
- MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.☆31Updated 9 years ago
- A Jenkins Pentest/Security Toolkit written in Python☆15Updated 7 years ago
- Advanced HTTP fingerprinting PoC☆45Updated 8 years ago
- Working Rsh Client With Bind/Reverse Shell☆20Updated 9 years ago
- A Burp Suite extension that starts scanning on requests it sees, and dumps results on standard output☆21Updated 9 years ago
- Faraday Workspaces for Bug Bounties☆21Updated 9 years ago
- ☆27Updated 8 years ago
- CSV injection Vulnerable Script.☆29Updated 8 years ago
- PFI (Port Forwarding Interceptor)☆46Updated 15 years ago
- Flash crossdomain policy security checker☆26Updated 9 years ago
- A tool to extract database data from a blind SQL injection vulnerability.☆32Updated 9 years ago
- Vulnerable Grails application☆43Updated 10 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- packetstormsecurity.net exploit archive 133ch3r☆24Updated 14 years ago
- A security write-up about the Paypal API & data leakage☆24Updated 9 years ago
- Tools for MITMing Yahoo! Mail with a Wifi Pineapple Mark V and Flash☆28Updated 8 years ago
- ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461☆48Updated 10 years ago
- Local privilege escalation scripts and tools☆17Updated 9 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- sniff/log database traffic or actively execute arbitrary queries via TCP injection☆42Updated 9 years ago
- js-beautifier extension for Burp Suite☆30Updated 12 years ago
- Exploits and research stuffs☆55Updated 2 years ago
- A duckyscript compatible Pi-Zero project, which utilises nmap - in particular the OS Detection features - to trigger OS-specific payloads…☆16Updated 8 years ago
- Xss Vulnerability Demonstration framework.☆12Updated 12 years ago
- Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe☆14Updated 9 years ago
- ☆17Updated 10 years ago
- A shell / chat bot for XMPP and cloud services☆48Updated 9 years ago
- A tiny chrome extension to record and replay your web application proof-of-concepts.☆20Updated 8 years ago