justmorpheus / very-vulnerable-serverless
Welcome to the Very Vulnerable Lambda Application repository! This repository contains an intentionally vulnerable serverless application that serves as a testing environment for security professionals to learn lambda pentesting. The application is designed to demonstrate various security vulnerabilities that can be found in serverless applicat…
☆11Updated 9 months ago
Alternatives and similar repositories for very-vulnerable-serverless:
Users that are interested in very-vulnerable-serverless are comparing it to the libraries listed below
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆53Updated 3 years ago
- ☆35Updated 3 weeks ago
- ☆90Updated 3 years ago
- ☆15Updated 4 years ago
- Jenkins Security Research or Hacking Jenkins ;)☆11Updated 4 months ago
- Enumerate AWS permissions and resources.☆68Updated 2 years ago
- ☆21Updated 7 years ago
- Damn Vulnerable Rails app☆12Updated 12 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆59Updated 2 years ago
- Contains all my research and content produced regarding the log4shell vulnerability☆31Updated 3 years ago
- Intentionally Vulnerable Nodejs Application & APIs☆22Updated 3 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- Template used for my OSCP exam.☆28Updated 2 years ago
- ☆22Updated 2 years ago
- ☆22Updated 3 years ago
- An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…☆12Updated 4 years ago
- A web security research tool for DOM testing☆20Updated this week
- ☆17Updated 3 years ago
- Regex patterns for manual application source code review☆27Updated 4 years ago
- A Buffer Overflow checklist, with plug-and-play pre-written python scripts.☆33Updated 3 years ago
- Python's handling of NaN is....interesting?broken?...this project illustrates the issue☆13Updated 3 years ago
- ☆20Updated 2 years ago
- Exploit scripts☆12Updated 3 years ago
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆18Updated 8 months ago
- Tool for making it easy to collect dns results from the CLI☆40Updated 8 months ago
- A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host☆42Updated 4 years ago
- Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.☆47Updated 3 years ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)☆43Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆64Updated last year