juice-shop / pwning-juice-shopLinks
Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
☆232Updated this week
Alternatives and similar repositories for pwning-juice-shop
Users that are interested in pwning-juice-shop are comparing it to the libraries listed below
Sorting:
- Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF☆449Updated last month
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆359Updated 4 years ago
- The ZAP Heads Up Display (HUD)☆270Updated this week
- Some good resources for getting started with application security☆142Updated 4 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆878Updated last month
- Purposely vulnerable Java application to help lead secure coding workshops☆187Updated last year
- A starter secure code review checklist☆181Updated 6 years ago
- Repo for all the SKF Docker lab examples☆457Updated last year
- A tool geared towards pentesting APIs using OpenAPI definitions.☆181Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆106Updated last year
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆172Updated 6 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆212Updated 11 months ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆746Updated 3 years ago
- ☆276Updated 3 years ago
- A curated list of vulnerable web applications.☆318Updated last year
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆129Updated 2 years ago
- Automatically exported from code.google.com/p/domxsswiki☆542Updated 7 years ago
- Collection of links to Security stuff☆117Updated last month
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆547Updated 2 years ago
- Host and manage multiple Juice Shop instances for security trainings and Capture The Flags☆296Updated this week
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆460Updated 6 years ago
- stuff i'm willing to share with the world lol☆170Updated 2 years ago
- These are the regexes that power truffleHog☆218Updated 2 years ago
- Damn Vulnerable NodeJS Application☆749Updated last year
- A simple web app with a XXE vulnerability.☆229Updated 3 years ago
- Bugcrowd’s baseline priority ratings for common security vulnerabilities☆492Updated last month
- materials we hand out☆147Updated 2 months ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆324Updated last year
- Curated list of public penetration testing reports released by several consulting firms☆48Updated 7 years ago
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆254Updated 2 years ago