joswha / Secure-Coding-Handbook
Web Application Secure Coding Handbook resource.
☆341Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Secure-Coding-Handbook
- ☆212Updated 3 years ago
- ☆741Updated 4 months ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆306Updated 7 months ago
- Bugbounty Resources☆531Updated last year
- A curated list of awesome browser security learning material.☆130Updated last year
- Golden Guide☆472Updated 9 months ago
- BugBountyTips☆401Updated 5 months ago
- Awesome information for WebSockets security research☆250Updated 2 years ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆232Updated 2 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆203Updated last week
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆513Updated 4 months ago
- Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application☆589Updated 4 years ago
- 🦄🔒 Awesome list of secrets in environment variables 🖥️☆865Updated 2 years ago
- Collection of Cloud and DevSecOps learning resources☆478Updated 3 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆871Updated this week
- API Security Project aims to present unique attack & defense methods in API Security field☆1,350Updated 8 months ago
- This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.☆223Updated 2 years ago
- Awesome list of step by step techniques to achieve Remote Code Execution on various apps!☆1,844Updated last year
- 📚 A curated list of awesome Docker security resources☆641Updated last week
- A collection of hacker tools using HackerOne's API☆250Updated 3 years ago
- This script grab public report from hacker one and make some folders with poc videos☆873Updated last year
- ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on sc…☆314Updated 2 weeks ago
- SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to crea…☆525Updated 2 years ago
- ☆1,177Updated 2 years ago
- DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover☆833Updated last year
- Storage Explorer - Publicly open storage viewer (Amazon S3 Bucket, Azure Blob, FTP server, HTTP Index Of/)☆432Updated last year
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated last year
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆392Updated last week
- all paths lead to clouds☆632Updated last year
- Files + Writeups for DownUnderCTF 2020 Challenges☆167Updated 3 years ago