jerryhoff / WebGoat.NET

Related projects: ⓘ

• OWASP / WebGoat.NET
  OWASP WebGoat.NET
  ☆69Updated 9 years ago
• rapPayne / WebGoat.Net
  OWASP's official repository for WebGoat (ASP.NET version)
  ☆56Updated 2 years ago
• pumasecurity / puma-scan
  Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams wr…
  ☆444Updated last year
• secvulture / dvta
  Damn Vulnerable Thick Client App
  ☆142Updated 4 years ago
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 8 years ago
• juice-shop / pwning-juice-shop
  Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
  ☆218Updated this week
• CoolerVoid / codewarrior
  ☆239Updated this week
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆630Updated 3 years ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆110Updated last year
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆92Updated 10 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆95Updated 9 months ago
• logicalhacking / DVHMA
  Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.
  ☆255Updated 6 years ago
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆191Updated 8 months ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆167Updated last year
• OWASP / SafeNuGet
  MsBuild task to warn about insecure NuGet libraries
  ☆97Updated 4 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆175Updated 5 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆344Updated 3 years ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆626Updated 11 months ago
• CSPF-Founder / JavaVulnerableLab
  Vulnerable Java based Web Application
  ☆255Updated 3 months ago
• daeken / SSRFTest
  SSRF testing tool
  ☆242Updated last year
• exploitprotocol / app-sec-wiki
  Files for appsecwiki.com
  ☆113Updated 4 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆257Updated 3 years ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆153Updated 6 months ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆129Updated 7 months ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆250Updated last month
• brandonprry / gray_hat_csharp_code
  This repository contains full code examples from the book Gray Hat C#
  ☆381Updated 2 years ago
• geeksonsecurity / vuln-web-apps
  A curated list of vulnerable web applications.
  ☆255Updated 8 months ago
• danilabs / tools-tbhm
  Tools of "The Bug Hunters Methodology V2 by @jhaddix"
  ☆194Updated 7 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆198Updated 3 months ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆225Updated 4 years ago