oauth security guidelines
☆232Jun 25, 2019Updated 7 years ago
Alternatives and similar repositories for oauth-2.0-security-cheat-sheet
Users that are interested in oauth-2.0-security-cheat-sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆331Mar 27, 2024Updated 2 years ago
- GraphQL automated security testing toolkit☆335Feb 20, 2024Updated 2 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆190Aug 11, 2022Updated 3 years ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆258Mar 2, 2022Updated 4 years ago
- An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations an…☆16Sep 4, 2020Updated 5 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆429Jun 23, 2026Updated 2 weeks ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆178Oct 26, 2024Updated last year
- Awesome secure by default libraries to help you eliminate bug classes!☆710Dec 6, 2025Updated 7 months ago
- Everything about xss protection technology☆15Oct 22, 2019Updated 6 years ago
- Custom scripts for the PIPER Burp extensions.☆98Sep 24, 2023Updated 2 years ago
- Recon tool for URLs discovery☆12Jun 19, 2024Updated 2 years ago
- A collection of simple tools and poc-builders☆39May 28, 2026Updated last month
- Recurrent Neural Network SubDomain Discovery Tool☆94Sep 20, 2022Updated 3 years ago
- Python script to launch burp scans automatically☆32Jul 18, 2021Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- security.txt collection of most popular world-wide domains☆56Sep 25, 2023Updated 2 years ago
- Modular Kubernetes lab which provides an easy and streamlined way to deploy a test cluster with support for different components.☆53Oct 2, 2025Updated 9 months ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆448Updated this week
- Accompanying material needed for the workshop☆11Jun 14, 2023Updated 3 years ago
- A cheatsheet for exploiting server-side SVG processors.☆802Jul 2, 2020Updated 6 years ago
- 🦄🔒 Awesome list of secrets in environment variables 🖥️☆909Sep 21, 2022Updated 3 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆192Dec 3, 2024Updated last year
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆32Dec 10, 2022Updated 3 years ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,822Apr 6, 2026Updated 3 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A curated list of awesome browser security learning material.☆153Nov 20, 2022Updated 3 years ago
- ☆24Jan 26, 2021Updated 5 years ago
- Websec interview questions by tib3rius answered☆309Nov 13, 2023Updated 2 years ago
- ☆246Jun 23, 2026Updated 2 weeks ago
- A very vulnerable implementation of a GraphQL API.☆62Nov 12, 2021Updated 4 years ago
- A simple script to check for insecurely exposed git repositories.☆12Mar 17, 2019Updated 7 years ago
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.☆56Apr 25, 2022Updated 4 years ago
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆40Feb 26, 2021Updated 5 years ago
- Prototype Pollution and useful Script Gadgets☆1,636Jan 27, 2024Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ☆1,202Sep 2, 2022Updated 3 years ago
- A collection of Turbo Intruder scripts.☆73Feb 1, 2025Updated last year
- Vulnerable app with examples showing how to not use secrets☆1,446Updated this week
- ☆439Jun 1, 2021Updated 5 years ago
- Filter and enrich a list of subdomains by level☆212Sep 25, 2023Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆981Dec 31, 2021Updated 4 years ago
- ☆34Jun 23, 2021Updated 5 years ago