n0psn0ps / FernbachAPI
Fernbach is a vulnerable API written in the Flask micro web framework. The intent of this API is for testing the OWASP top ten vulnerabilities in an API environment.
☆30Updated 3 years ago
Alternatives and similar repositories for FernbachAPI:
Users that are interested in FernbachAPI are comparing it to the libraries listed below
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆27Updated 4 years ago
- ☆19Updated 3 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 3 years ago
- 10 Reset Password Flaws Based on Web Application Security☆11Updated 4 years ago
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges☆32Updated 2 years ago
- A simple tool which makes creating nuclei templates even easier.☆36Updated 9 months ago
- Creating a Database for Mass Recon☆12Updated 4 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆57Updated 3 years ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Updated 3 years ago
- ☆23Updated 3 years ago
- AWS S3 open bucket poc automated script.☆57Updated 3 years ago
- ☆10Updated last year
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 4 years ago
- HTTP requests of FrontPage expolit☆25Updated 11 years ago
- ☆30Updated 11 months ago
- NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.☆78Updated 2 years ago
- XSS Finder Via SSTI☆54Updated last year
- I collected it to help the bug hunter get a reward☆58Updated 2 years ago
- Find CVEs that don't have a Detectify modules.☆21Updated 2 years ago
- Web CTF CheatSheet 🐈☆34Updated 6 years ago
- ☆38Updated 4 years ago
- port+dir+param bruteforcing at the same time using ffuf☆17Updated 8 months ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Striping CDN IPs from a list of IP Addresses☆75Updated 2 years ago
- Script for Reconnaissance(Bug Bounty)☆18Updated 2 years ago
- Custom scripts for directory fuzzing, subdomain enumeration, and more.☆43Updated 3 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆62Updated 3 years ago
- Cool HackerOne Reports☆20Updated 2 years ago
- Intentionally Vulnerable Nodejs Application & APIs☆22Updated 3 years ago