juice-shop / pwning-juice-shopLinks
Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
☆232Updated last week
Alternatives and similar repositories for pwning-juice-shop
Users that are interested in pwning-juice-shop are comparing it to the libraries listed below
Sorting:
- Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF☆457Updated last month
- A curated list of vulnerable web applications.☆331Updated 2 years ago
- The ZAP Heads Up Display (HUD)☆272Updated 2 weeks ago
- Some good resources for getting started with application security☆143Updated 4 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆359Updated 5 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!��☆132Updated 3 years ago
- Damn Vulnerable Java (EE) Application☆144Updated last year
- A starter secure code review checklist☆184Updated 7 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆183Updated 3 years ago
- 🤙 Security Trivia that rare people know.☆161Updated 6 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆751Updated 3 years ago
- Purposely vulnerable Java application to help lead secure coding workshops☆192Updated last year
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆883Updated 3 weeks ago
- A simple web app with a XXE vulnerability.☆229Updated 4 years ago
- Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.☆471Updated 3 years ago
- Curated list of public penetration testing reports released by several consulting firms☆48Updated 7 years ago
- Repo for all the SKF Docker lab examples☆461Updated last year
- The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…☆97Updated 12 years ago
- Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.☆269Updated 7 years ago
- Collection of links to Security stuff☆117Updated 4 months ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆174Updated 6 years ago
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆27Updated 6 years ago
- ☆276Updated 4 years ago
- This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.☆246Updated 6 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆110Updated 2 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆561Updated 2 years ago
- Intentionally Vulnerable Serverless Functions to understand the specifics of Serverless Security Vulnerabilities☆136Updated 3 years ago
- Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks☆81Updated 3 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆458Updated 6 years ago
- Fast and easy script to manage pentesting training apps☆377Updated last year