infosec-au / websec-weekly

Related projects ⓘ

Alternatives and complementary repositories for websec-weekly

• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆77Updated 8 years ago
• moloch-- / CSP-Bypass
  A Burp Plugin for Detecting Weaknesses in Content Security Policies
  ☆163Updated last year
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 7 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆156Updated 5 years ago
• sbehrens / sleepy-puppy
  Deprecated please use https://github.com/Netflix/sleepy-puppy
  ☆94Updated 6 years ago
• flabbergastedbd / pocuito
  A tiny chrome extension to record and replay your web application proof-of-concepts.
  ☆20Updated 7 years ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆128Updated 7 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• 0xcite / fingerping
  A security tool to fingerprint PNG libraries used by web applications
  ☆80Updated 5 years ago
• JordanMilne / YMail-Pineapple
  Tools for MITMing Yahoo! Mail with a Wifi Pineapple Mark V and Flash
  ☆27Updated 8 years ago
• burp-hash / burp-hash
  ☆32Updated 9 years ago
• infosec-au / bugbountydash
  [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd
  ☆189Updated 8 years ago
• jfoote / burp-git-bridge
  Store Burp data and collaborate via git
  ☆54Updated 5 years ago
• evilpacket / xss.io
  ☆74Updated 11 years ago
• ikkisoft / ParrotNG
  ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461
  ☆47Updated 9 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆93Updated 6 years ago
• rafaybaloch / SOP-Bypass-Mini-Test-Suite
  This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…
  ☆31Updated 5 years ago
• vulndb / python-sdk
  Python SDK to access the vulnerability database
  ☆22Updated 5 years ago
• jcarlosn / gzip-http-time
  PoC for getting remote HTTP Server date using gzip compressed HTTP Response
  ☆56Updated 8 years ago
• NetSPI / MoneyX
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆30Updated 8 years ago
• red-team-labs / waldo
  ☆52Updated 8 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆112Updated 7 years ago
• portcullislabs / co-ordinated-disclosure-toolkit
  Portcullis Computer Security Co-ordinated Disclosure Toolkit
  ☆24Updated 4 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 10 years ago
• Gifts / XXE-OOB-Exploitation-Toolset-for-Automation
  XXE OOB Exploitation Toolset for Automation
  ☆63Updated 10 years ago