jorritfolmer / vulnerable-api

Related projects ⓘ

Alternatives and complementary repositories for vulnerable-api

• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆62Updated 3 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆89Updated 7 months ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• Rhynorater / reports
  ☆57Updated 4 months ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆59Updated 3 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆82Updated 3 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆84Updated last month
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• codingo / dooked
  DNS and Target HTTP History Local Storage and Search
  ☆63Updated 3 years ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆56Updated 4 years ago
• v1ll41n / H1-Report-Finder
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42Updated 4 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated last year
• dwisiswant0 / continuous-nuclei
  Running nuclei Continuously
  ☆55Updated 2 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• h4ckboy19 / XXE_A_TO_Z
  ☆44Updated 2 years ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆74Updated 2 years ago
• timkoopmans / eipfish
  Go fish for AWS EIPs
  ☆46Updated 3 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 3 years ago
• michael1026 / trashcompactor
  ☆65Updated last year
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• devanshbatham / awesome-bughunting-oneliners
  A list of Awesome Bughunting oneliners , collected from the various sources
  ☆65Updated last year
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆48Updated last year
• detectify / cs-challenge
  Detectify Crowdsource Challenge
  ☆63Updated 2 years ago
• iamthefrogy / bucketbunny
  AWS S3 open bucket poc automated script.
  ☆55Updated 3 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• RakeshKengale / RaKKeN
  Information Security Information From Web
  ☆26Updated 2 months ago