Top Ten Web Hacking Techniques List
☆771Nov 10, 2023Updated 2 years ago
Alternatives and similar repositories for top10webseclist
Users that are interested in top10webseclist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SSRF (Server Side Request Forgery) testing resources☆2,507Oct 12, 2024Updated last year
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆619Mar 4, 2021Updated 5 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆347Nov 20, 2022Updated 3 years ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,084Jan 2, 2024Updated 2 years ago
- ☆703Nov 27, 2024Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆981Dec 31, 2021Updated 4 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆300Feb 12, 2023Updated 3 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,807Apr 26, 2024Updated 2 years ago
- This challenge is Inon Shkedy's 31 days API Security Tips.☆2,239Apr 20, 2022Updated 4 years ago
- Hunting Bugs for Fun and Profit☆277Jul 29, 2020Updated 5 years ago
- ☆699Jul 4, 2022Updated 4 years ago
- A collection of pentest and development tips☆1,127May 26, 2022Updated 4 years ago
- Prototype Pollution and useful Script Gadgets☆1,636Jan 27, 2024Updated 2 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆395Aug 15, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A collection of custom security tools for quick needs.☆3,306May 1, 2023Updated 3 years ago
- xss漏洞模糊测试payload的最佳集合 2020版☆512May 25, 2020Updated 6 years ago
- Reverse proxies cheatsheet☆1,888Nov 4, 2023Updated 2 years ago
- Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.☆1,036Feb 20, 2020Updated 6 years ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆1,074Jan 3, 2025Updated last year
- Apache Solr Injection Research☆579Jan 28, 2020Updated 6 years ago
- CyberSecurityRSS: A collection of cybersecurity rss to make you better!☆1,929Mar 26, 2026Updated 3 months ago
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥☆7,532Mar 26, 2026Updated 3 months ago
- ☆1,201Sep 2, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Client Side Prototype Pollution Scanner☆529Sep 17, 2022Updated 3 years ago
- ☆97Oct 7, 2023Updated 2 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- HTTP file upload scanner for Burp Proxy☆494Dec 25, 2023Updated 2 years ago
- Various Payload wordlists☆243Apr 26, 2025Updated last year
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆630Jan 20, 2021Updated 5 years ago
- 个人域渗透学习笔记☆1,805Feb 7, 2020Updated 6 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Feb 14, 2022Updated 4 years ago
- A curated list of amazingly awesome Burp Extensions☆3,423Feb 17, 2026Updated 4 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A collection of hacks and one-off scripts☆2,504Mar 13, 2025Updated last year
- 红队作战中比较常遇到的一些重点系统漏 洞整理。☆2,521Jul 17, 2021Updated 4 years ago
- 🔪Browser logic vulnerabilities☆705Jan 23, 2021Updated 5 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆582Sep 7, 2021Updated 4 years ago
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆725Mar 21, 2022Updated 4 years ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆13Feb 8, 2020Updated 6 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,393Apr 18, 2023Updated 3 years ago