jerryhoff / WebGoat.NET
OWASP WebGoat.NET
☆219Updated 9 months ago
Related projects: ⓘ
- OWASP WebGoat.NET☆69Updated 9 years ago
- OWASP's official repository for WebGoat (ASP.NET version)☆56Updated 2 years ago
- Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams wr…☆444Updated last year
- Damn Vulnerable Thick Client App☆142Updated 4 years ago
- OWASP Testing Guide☆110Updated 8 years ago
- Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"☆218Updated this week
- ☆239Updated this week
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆630Updated 3 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆110Updated last year
- The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…☆92Updated 10 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆95Updated 9 months ago
- Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.☆255Updated 6 years ago
- Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …☆191Updated 8 months ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆167Updated last year
- MsBuild task to warn about insecure NuGet libraries☆97Updated 4 years ago
- A starter secure code review checklist☆175Updated 5 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆344Updated 3 years ago
- Finds unknown classes of injection vulnerabilities☆626Updated 11 months ago
- Vulnerable Java based Web Application☆255Updated 3 months ago
- SSRF testing tool☆242Updated last year
- Files for appsecwiki.com☆113Updated 4 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆257Updated 3 years ago
- A simple web app that helps developers understand the ASVS requirements.☆153Updated 6 months ago
- Damn Vulnerable Java (EE) Application☆129Updated 7 months ago
- The ZAP Heads Up Display (HUD)☆250Updated last month
- This repository contains full code examples from the book Gray Hat C#☆381Updated 2 years ago
- A curated list of vulnerable web applications.☆255Updated 8 months ago
- Tools of "The Bug Hunters Methodology V2 by @jhaddix"☆194Updated 7 years ago
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆198Updated 3 months ago
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...☆225Updated 4 years ago