nVisium / goat.js

Related projects: ⓘ

• nVisium / node.nV
  ☆10Updated this week
• SafeBreach-Labs / cachetalk
  Proof-of-concept program that is able to read and write arbitrary bits using HTTP server-side caching
  ☆34Updated 7 years ago
• iixlabs / websec-training
  A collection of vulnerable web applications in Node.js to practice security fundamentals
  ☆13Updated 8 years ago
• g0blinResearch / flexiduck
  A duckyscript compatible Pi-Zero project, which utilises nmap - in particular the OS Detection features - to trigger OS-specific payloads…
  ☆17Updated 7 years ago
• NetSPI / MoneyX
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆30Updated 8 years ago
• skepticfx / tlsjack
  A simple TLS forwarder that lets you intercept traffic and play with them.
  ☆30Updated 5 years ago
• tunnelshade / pocuito
  A tiny chrome extension to record and replay your web application proof-of-concepts.
  ☆20Updated 7 years ago
• NetSPI / grails-nV
  Vulnerable Grails application
  ☆43Updated 9 years ago
• andrew-morris / threat_research
  ☆27Updated this week
• anshumanbh / FASTSAM
  Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices
  ☆18Updated 7 years ago
• mandatoryprogrammer / wmap
  a mass web screenshot tool for mapping web networks.
  ☆24Updated 9 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 7 years ago
• 0x90 / lpe-arsenal
  Local privilege escalation scripts and tools
  ☆16Updated 8 years ago
• wireghoul / lbmap
  Advanced HTTP fingerprinting PoC
  ☆44Updated 7 years ago
• lesurp / PoistonTapContainer
  Docker container to run PoisonTap
  ☆15Updated 7 years ago
• Shellntel / websocket_egress
  Websocket based egress tester
  ☆20Updated 7 years ago
• EnableSecurity / Identity-Crisis
  A Burp Suite extension that checks if a particular URL responds differently to various User-Agent headers
  ☆15Updated 10 years ago
• jaegerindustries / password_search
  ☆15Updated this week
• trietptm / fuzzdb
  Automatically exported from code.google.com/p/fuzzdb
  ☆14Updated 9 years ago
• nbshelton / bitdump
  A tool to extract database data from a blind SQL injection vulnerability.
  ☆31Updated 8 years ago
• infobyte / faraday_bugbounty
  Faraday Workspaces for Bug Bounties
  ☆20Updated 8 years ago
• OffensivePython / HeartLeak
  CVE-2014-0160 (Heartbeat Buffer over-read bug)
  ☆16Updated 10 years ago
• ecbftw / nanown
  ☆18Updated 7 years ago
• 0x8b30cc / SFTPfuzzer
  ☆12Updated this week
• praetorian-inc / burp-wcf-gzip
  Burp extension for decoding WCF-gzipped requests.
  ☆12Updated 8 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 9 years ago
• Maleus / Enumerator
  ☆17Updated 9 years ago
• jeredbare / ms17-010_to_slack
  Scans for the MS17-010 vulnerability and drops the alert into slack.
  ☆15Updated 7 years ago
• Th3R3p0 / AutoSec4WebApps
  ☆12Updated 7 years ago