mpirnat / lets-be-bad-guysLinks
A deliberately-vulnerable website and exercises for teaching about the OWASP Top 10
☆186Updated 11 months ago
Alternatives and similar repositories for lets-be-bad-guys
Users that are interested in lets-be-bad-guys are comparing it to the libraries listed below
Sorting:
- Vulnerable Django Application☆205Updated 3 years ago
- A tool to surface security issues in python code☆226Updated 8 years ago
- Resources for developers and security engineers to learn the ropes of application security☆97Updated 6 years ago
- A high entropy string plugin for OpenStack's bandit project☆48Updated 3 years ago
- Mittn: Security test tool runner for test automation in CI☆195Updated last year
- INACTIVE - Collection of Tools & Procedures for double checking GitHub configurations☆137Updated last year
- A project designed to parse public source code repositories and find various types of vulnerabilities.☆192Updated 7 years ago
- An application to assist in the organization and prioritization of software security activities.☆139Updated 4 years ago
- OpenDNS application security training program☆230Updated 4 years ago
- A REST API security testing framework.☆326Updated 3 years ago
- Dlint is a tool for encouraging best coding practices and helping ensure we're writing secure Python code.☆329Updated 5 years ago
- Minion☆354Updated 6 years ago
- Tool used to continuously monitor a Github org for mistaken public commits☆165Updated 9 years ago
- A number of Recipes for AWS☆194Updated 6 years ago
- Capture the Flag: Web Edition https://stripe.com/blog/capture-the-flag-20☆276Updated 9 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- Repository demonstrating the Capital One breach on your AWS account☆243Updated 4 years ago
- a grep -r for secrets☆178Updated 3 years ago
- Your best is an idiot☆138Updated 9 years ago
- An intentionally designed broken web application based on REST API.☆575Updated 4 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆179Updated 6 years ago
- SeaSponge is an accessible threat modelling tool from Mozilla☆278Updated 7 years ago
- Content for OWASP Summit 2017 site☆128Updated 4 years ago
- A collection of Ansible roles for automating infosec builds.☆93Updated 7 years ago
- Puzzles, challenges, games, CTFs, and other entertainment via coding☆203Updated 4 years ago
- AWS risky security change detector based on EDDA.☆82Updated 6 years ago
- Tools for auditing WAFS☆460Updated 4 years ago
- ☆93Updated 2 years ago
- Live at http://extractdata.club☆166Updated 8 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆139Updated 11 months ago