juice-shop / pwning-juice-shopView external linksLinks
Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
☆232Updated this week
Alternatives and similar repositories for pwning-juice-shop
Users that are interested in pwning-juice-shop are comparing it to the libraries listed below
Sorting:
- Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF☆461Jan 21, 2026Updated 3 weeks ago
- Host and manage multiple Juice Shop instances for security trainings and Capture The Flags☆308Updated this week
- OWASP Juice Shop: Probably the most modern and sophisticated insecure web application☆12,501Updated this week
- Smart, friendly and helpful chat bot for OWASP Juice Shop☆11Jan 26, 2026Updated 3 weeks ago
- This projects provides a logger and a connected harlem shake js.☆20May 17, 2024Updated last year
- Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly☆12Jun 13, 2016Updated 9 years ago
- Lair Framework dockerized.☆38Apr 17, 2021Updated 4 years ago
- Crystal library for the Shodan API.☆10Dec 20, 2021Updated 4 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆58Jul 26, 2020Updated 5 years ago
- University lecture on "IT Security" as Open Educational Resources material☆376Aug 18, 2023Updated 2 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆883Dec 15, 2025Updated 2 months ago
- ☆14Mar 31, 2018Updated 7 years ago
- A standard allowing organizations to nominate security contact points and policies via DNS TXT records.☆33Jun 4, 2025Updated 8 months ago
- DPE - Default Password Enumeration☆36Jun 3, 2013Updated 12 years ago
- Gather domains as a precursor to scanning☆20Updated this week
- Graphql introspection query analyzer.☆18Mar 28, 2023Updated 2 years ago
- A web front-end for password cracking and analytics☆16Jan 6, 2019Updated 7 years ago
- Collection of fuzzing payloads and corpus from all around added as sub modules☆15May 17, 2025Updated 9 months ago
- Splunk Dashboard for CobaltStrike logs☆90Mar 16, 2021Updated 4 years ago
- PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach …☆29Jan 8, 2023Updated 3 years ago
- Ansible module for OWASP ZAP using Python API to scan web targets for security issues☆15Dec 3, 2017Updated 8 years ago
- Takes a list of domains as the input, checks if they have a security.txt, outputs the results.☆16May 15, 2020Updated 5 years ago
- A collection of useful scripts for penetration testers☆83Oct 23, 2012Updated 13 years ago
- Creates the initial scope of files and directories/folders of a web site for Spiders/Robots/Crawlers☆16Sep 8, 2013Updated 12 years ago
- A Game of Hackers (CTF Scoreboard & Game Manager)☆1,084Jul 22, 2025Updated 6 months ago
- This project is about creating and publishing threat model examples.☆427Nov 10, 2021Updated 4 years ago
- A multi-threaded Golang scanner to identify Ruby endpoints vulnerable to CVE-2019-5418☆35Mar 21, 2019Updated 6 years ago
- An example of a mis-configured Rails application release under MIT license.☆21Jan 19, 2023Updated 3 years ago
- This is a hash parser that will export a rc file compatible with Metasploit. This is useful when compromising a separate domain and want …☆22Oct 8, 2014Updated 11 years ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet☆56Oct 23, 2024Updated last year
- 🐑 Websheep is an app based on a willingly vulnerable ReSTful APIs.☆57Mar 25, 2024Updated last year
- Miscellaneous for various things☆21Nov 19, 2024Updated last year
- Welcome to the NCC Group Threat Intelligence Alert repo, here you will find the alerts which we have raised to our customers regarding in…☆25Feb 6, 2023Updated 3 years ago
- Docker container for datasploit framework☆25Aug 3, 2017Updated 8 years ago
- Cloud-Native Microservice Security Bootcamp☆20Jun 11, 2021Updated 4 years ago
- Common code, such as validators and mixins, that are shared between ActiveModels in metasploit-framework and ActiveRecords in metasploit_…☆14May 2, 2025Updated 9 months ago
- Burp/ZAP extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆38Dec 14, 2021Updated 4 years ago
- Ransomware Detection Test PowerShell Script☆11Sep 22, 2017Updated 8 years ago
- A CLI tool and library allowing to simply decode all kind of BigIP cookies.☆39Jul 7, 2020Updated 5 years ago