This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
☆46Feb 2, 2023Updated 3 years ago
Alternatives and similar repositories for DamnVulnerableMicroServices
Users that are interested in DamnVulnerableMicroServices are comparing it to the libraries listed below
Sorting:
- A simple Node.js Express REST app with some OWASP vulnerabilities.☆22Aug 13, 2024Updated last year
- A very vulnerable implementation of a GraphQL API.☆61Nov 12, 2021Updated 4 years ago
- Intentionaly very vulnerable API with bonus bad coding practices☆51Nov 15, 2025Updated 3 months ago
- 🐑 Websheep is an app based on a willingly vulnerable ReSTful APIs.☆57Mar 25, 2024Updated last year
- ☆84May 1, 2023Updated 2 years ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆503Updated this week
- completely ridiculous API (crAPI)☆1,435Feb 24, 2026Updated last week
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆133Dec 22, 2022Updated 3 years ago
- Vulnerable API☆418Mar 4, 2023Updated 3 years ago
- Open Redirect Vulnerability Payload List☆10Feb 23, 2021Updated 5 years ago
- An another JWT cracker but really fast!☆11Jan 26, 2023Updated 3 years ago
- Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practis…☆1,676May 24, 2025Updated 9 months ago
- A PowerShell script for helping to find vulnerable settings in AD Group Policy.☆16Jan 8, 2019Updated 7 years ago
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆1,174Nov 25, 2024Updated last year
- ☆35Jun 30, 2020Updated 5 years ago
- Collection of fuzzing payloads and corpus from all around added as sub modules☆15May 17, 2025Updated 9 months ago
- Fortigate Log Parser☆16Dec 28, 2025Updated 2 months ago
- Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and A…☆20Sep 11, 2023Updated 2 years ago
- Rapid Deployment Infrastructure for Red Teaming and Penetration Testing☆44Aug 29, 2022Updated 3 years ago
- Damn Vulnerable API☆87Sep 22, 2025Updated 5 months ago
- A fast dictionary attack tool (700,000+ candidates per second), that attacks a supported hash with a user-defined dictionary file's candi…☆22May 3, 2021Updated 4 years ago
- This repository outlines my OSCP-focused methodology, specifically targeting common port numbers encountered during penetration testing. …☆24Jul 21, 2021Updated 4 years ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆22Jun 14, 2020Updated 5 years ago
- ☆21Feb 12, 2026Updated 2 weeks ago
- Curated lists of InfoSec on Twitter. Find out who's awesome to follow!☆91Apr 12, 2021Updated 4 years ago
- Cross Site Scripting ( XSS ) Vulnerability Payload List☆23Feb 23, 2021Updated 5 years ago
- Avocado is a powerful C2 framework written in Python with stageless implants in Rust. Avocado's implant runs seamlessly on both Linux and…☆27Feb 15, 2026Updated 2 weeks ago
- A collection of OSCE preparation resources.☆24Oct 30, 2019Updated 6 years ago
- ☆10Apr 13, 2022Updated 3 years ago
- Wrapper for blocksec2go allowing easy hardware-based signing of Ethereum transactions☆12Feb 8, 2023Updated 3 years ago
- assets for www.hahwul.com☆24Feb 26, 2026Updated last week
- HTTP parameter discovery suite.☆65Jun 3, 2020Updated 5 years ago
- Qui puoi trovare i comandi aggiornati per l'uso con Debian 11. Se hai acquistato il libro prima del 2022 probabilmente sei nel posto gius…☆14Jan 11, 2023Updated 3 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆25Apr 19, 2023Updated 2 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆31Jun 22, 2023Updated 2 years ago
- API Security Project aims to present unique attack & defense methods in API Security field☆286Mar 6, 2022Updated 3 years ago
- Course repository for PowerShell for Pentesters Course☆439Mar 9, 2022Updated 3 years ago
- A way to use XInput to insert PIN for login, useful for handheld devices that does not have Fingerprint or face reco☆12Nov 3, 2024Updated last year
- OWASP Foundation Web Respository☆37Oct 3, 2025Updated 5 months ago