irsdl/top10webseclist external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

irsdl/top10webseclist

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/irsdl/top10webseclist)

Close

irsdl / top10webseclistView on GitHubMore

• External links
• Readme badge

Top Ten Web Hacking Techniques List

☆764Nov 10, 2023Updated 2 years ago

Alternatives and similar repositories for top10webseclist

Users that are interested in top10webseclist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cujanovic / SSRF-Testing

  View on GitHub
  SSRF (Server Side Request Forgery) testing resources
  ☆2,485Oct 12, 2024Updated last year
• BishopFox / GadgetProbe

  View on GitHub
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆612Mar 4, 2021Updated 5 years ago
• ZeddYu / HTTP-Smuggling-Lab

  View on GitHub
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆348Nov 20, 2022Updated 3 years ago
• defparam / smuggler

  View on GitHub
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,069Jan 2, 2024Updated 2 years ago
• jmdx / TLS-poison

  View on GitHub
  ☆705Nov 27, 2024Updated last year
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• assetnote / blind-ssrf-chains

  View on GitHub
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆964Dec 31, 2021Updated 4 years ago
• ameenmaali / qsfuzz

  View on GitHub
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Feb 12, 2023Updated 3 years ago
• wagiro / BurpBounty

  View on GitHub
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,794Apr 26, 2024Updated last year
• inonshk / 31-days-of-API-Security-Tips

  View on GitHub
  This challenge is Inon Shkedy's 31 days API Security Tips.
  ☆2,231Apr 20, 2022Updated 3 years ago
• 1hack0 / Facebook-Bug-Bounty-Write-ups

  View on GitHub
  Hunting Bugs for Fun and Profit
  ☆276Jul 29, 2020Updated 5 years ago
• filedescriptor / untrusted-types

  View on GitHub
  ☆696Jul 4, 2022Updated 3 years ago
• 3gstudent / Pentest-and-Development-Tips

  View on GitHub
  A collection of pentest and development tips
  ☆1,127May 26, 2022Updated 3 years ago
• BlackFan / client-side-prototype-pollution

  View on GitHub
  Prototype Pollution and useful Script Gadgets
  ☆1,607Jan 27, 2024Updated 2 years ago
• 0ang3el / websocket-smuggle

  View on GitHub
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆392Aug 15, 2024Updated last year
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• gwen001 / pentest-tools

  View on GitHub
  A collection of custom security tools for quick needs.
  ☆3,287May 1, 2023Updated 2 years ago
• heroanswer / XSS_Cheat_Sheet_2020_Edition

  View on GitHub
  xss漏洞模糊测试payload的最佳集合 2020版
  ☆510May 25, 2020Updated 5 years ago
• GrrrDog / weird_proxies

  View on GitHub
  Reverse proxies cheatsheet
  ☆1,857Nov 4, 2023Updated 2 years ago
• alphaSeclab / awesome-burp-suite

  View on GitHub
  Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
  ☆1,032Feb 20, 2020Updated 6 years ago
• AlephNullSK / dnsgen

  View on GitHub
  DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…
  ☆1,058Jan 3, 2025Updated last year
• veracode-research / solr-injection

  View on GitHub
  Apache Solr Injection Research
  ☆581Jan 28, 2020Updated 6 years ago
• zer0yu / CyberSecurityRSS

  View on GitHub
  CyberSecurityRSS: A collection of cybersecurity rss to make you better!
  ☆1,888Mar 26, 2026Updated 3 weeks ago
• 0xInfection / Awesome-WAF

  View on GitHub
  Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥
  ☆7,430Mar 26, 2026Updated 3 weeks ago
• msrkp / PPScan

  View on GitHub
  Client Side Prototype Pollution Scanner
  ☆524Sep 17, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• httpvoid / writeups

  View on GitHub
  ☆1,202Sep 2, 2022Updated 3 years ago
• pyn3rd / my-presentation-slide

  View on GitHub
  ☆101Oct 7, 2023Updated 2 years ago
• welk1n / JNDI-Injection-Bypass

  View on GitHub
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆485Dec 9, 2020Updated 5 years ago
• modzero / mod0BurpUploadScanner

  View on GitHub
  HTTP file upload scanner for Burp Proxy
  ☆491Dec 25, 2023Updated 2 years ago
• ZephrFish / Wordlists

  View on GitHub
  Various Payload wordlists
  ☆240Apr 26, 2025Updated 11 months ago
• ethicalhackingplayground / ssrf-king

  View on GitHub
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆621Jan 20, 2021Updated 5 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,803Feb 7, 2020Updated 6 years ago
• random-robbie / ssrf-finder

  View on GitHub
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆112Feb 14, 2022Updated 4 years ago
• snoopysecurity / awesome-burp-extensions

  View on GitHub
  A curated list of amazingly awesome Burp Extensions
  ☆3,391Feb 17, 2026Updated last month
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• tomnomnom / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆2,453Mar 13, 2025Updated last year
• Metnew / uxss-db

  View on GitHub
  🔪Browser logic vulnerabilities
  ☆700Jan 23, 2021Updated 5 years ago
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,521Jul 17, 2021Updated 4 years ago
• nccgroup / freddy

  View on GitHub
  Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
  ☆584Sep 7, 2021Updated 4 years ago
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆728Mar 21, 2022Updated 4 years ago
• tarunkant / Gopherus

  View on GitHub
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,340Apr 18, 2023Updated 2 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload

  View on GitHub
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Feb 8, 2020Updated 6 years ago