irsdl/top10webseclist external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

irsdl/top10webseclist

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/irsdl/top10webseclist)

Close

irsdl / top10webseclistView on GitHubMore

• External links
• Readme badge

Top Ten Web Hacking Techniques List

☆769Nov 10, 2023Updated 2 years ago

Alternatives and similar repositories for top10webseclist

Users that are interested in top10webseclist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cujanovic / SSRF-Testing

  View on GitHub
  SSRF (Server Side Request Forgery) testing resources
  ☆2,496Oct 12, 2024Updated last year
• BishopFox / GadgetProbe

  View on GitHub
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆616Mar 4, 2021Updated 5 years ago
• ZeddYu / HTTP-Smuggling-Lab

  View on GitHub
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆347Nov 20, 2022Updated 3 years ago
• defparam / smuggler

  View on GitHub
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,075Jan 2, 2024Updated 2 years ago
• jmdx / TLS-poison

  View on GitHub
  ☆704Nov 27, 2024Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• assetnote / blind-ssrf-chains

  View on GitHub
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆976Dec 31, 2021Updated 4 years ago
• ameenmaali / qsfuzz

  View on GitHub
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Feb 12, 2023Updated 3 years ago
• wagiro / BurpBounty

  View on GitHub
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,802Apr 26, 2024Updated 2 years ago
• inonshk / 31-days-of-API-Security-Tips

  View on GitHub
  This challenge is Inon Shkedy's 31 days API Security Tips.
  ☆2,235Apr 20, 2022Updated 4 years ago
• 1hack0 / Facebook-Bug-Bounty-Write-ups

  View on GitHub
  Hunting Bugs for Fun and Profit
  ☆276Jul 29, 2020Updated 5 years ago
• filedescriptor / untrusted-types

  View on GitHub
  ☆698Jul 4, 2022Updated 3 years ago
• 3gstudent / Pentest-and-Development-Tips

  View on GitHub
  A collection of pentest and development tips
  ☆1,127May 26, 2022Updated 4 years ago
• BlackFan / client-side-prototype-pollution

  View on GitHub
  Prototype Pollution and useful Script Gadgets
  ☆1,623Jan 27, 2024Updated 2 years ago
• 0ang3el / websocket-smuggle

  View on GitHub
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆394Aug 15, 2024Updated last year
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• gwen001 / pentest-tools

  View on GitHub
  A collection of custom security tools for quick needs.
  ☆3,294May 1, 2023Updated 3 years ago
• heroanswer / XSS_Cheat_Sheet_2020_Edition

  View on GitHub
  xss漏洞模糊测试payload的最佳集合 2020版
  ☆511May 25, 2020Updated 6 years ago
• GrrrDog / weird_proxies

  View on GitHub
  Reverse proxies cheatsheet
  ☆1,880Nov 4, 2023Updated 2 years ago
• alphaSeclab / awesome-burp-suite

  View on GitHub
  Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
  ☆1,035Feb 20, 2020Updated 6 years ago
• AlephNullSK / dnsgen

  View on GitHub
  DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…
  ☆1,073Jan 3, 2025Updated last year
• veracode-research / solr-injection

  View on GitHub
  Apache Solr Injection Research
  ☆581Jan 28, 2020Updated 6 years ago
• zer0yu / CyberSecurityRSS

  View on GitHub
  CyberSecurityRSS: A collection of cybersecurity rss to make you better!
  ☆1,913Mar 26, 2026Updated 2 months ago
• 0xInfection / Awesome-WAF

  View on GitHub
  Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥
  ☆7,484Mar 26, 2026Updated 2 months ago
• httpvoid / writeups

  View on GitHub
  ☆1,201Sep 2, 2022Updated 3 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• msrkp / PPScan

  View on GitHub
  Client Side Prototype Pollution Scanner
  ☆526Sep 17, 2022Updated 3 years ago
• pyn3rd / my-presentation-slide

  View on GitHub
  ☆98Oct 7, 2023Updated 2 years ago
• welk1n / JNDI-Injection-Bypass

  View on GitHub
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆483Dec 9, 2020Updated 5 years ago
• modzero / mod0BurpUploadScanner

  View on GitHub
  HTTP file upload scanner for Burp Proxy
  ☆490Dec 25, 2023Updated 2 years ago
• ZephrFish / Wordlists

  View on GitHub
  Various Payload wordlists
  ☆241Apr 26, 2025Updated last year
• ethicalhackingplayground / ssrf-king

  View on GitHub
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆625Jan 20, 2021Updated 5 years ago
• random-robbie / ssrf-finder

  View on GitHub
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆112Feb 14, 2022Updated 4 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,802Feb 7, 2020Updated 6 years ago
• tomnomnom / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆2,472Mar 13, 2025Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• snoopysecurity / awesome-burp-extensions

  View on GitHub
  A curated list of amazingly awesome Burp Extensions
  ☆3,399Feb 17, 2026Updated 3 months ago
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,519Jul 17, 2021Updated 4 years ago
• Metnew / uxss-db

  View on GitHub
  🔪Browser logic vulnerabilities
  ☆701Jan 23, 2021Updated 5 years ago
• nccgroup / freddy

  View on GitHub
  Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
  ☆583Sep 7, 2021Updated 4 years ago
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆725Mar 21, 2022Updated 4 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload

  View on GitHub
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Feb 8, 2020Updated 6 years ago
• tarunkant / Gopherus

  View on GitHub
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,366Apr 18, 2023Updated 3 years ago