onsecru / jwt-hacking-challenges

Related projects ⓘ

Alternatives and complementary repositories for jwt-hacking-challenges

• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆102Updated 4 months ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated 9 months ago
• rammarj / csrf-poc-creator
  A Burp Suite extension for CSRF proof of concepts.
  ☆46Updated last year
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆158Updated 7 months ago
• amalmurali47 / onaws
  Fetch the details of assets hosted on AWS.
  ☆86Updated 11 months ago
• jdonsec / AllThingsXXE
  ☆25Updated 4 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆186Updated 3 months ago
• codingo / bbr
  An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
  ☆205Updated 4 years ago
• optiv / rest-api-goat
  ☆71Updated last year
• codingo / dooked
  DNS and Target HTTP History Local Storage and Search
  ☆63Updated 3 years ago
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• Virdoexhunter / HowToHunt
  Some Tutorials and Things to Do while Hunting That Vulnerability.
  ☆72Updated 4 years ago
• Rhynorater / reports
  ☆57Updated 4 months ago
• codingo / fastsub
  A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.
  ☆57Updated 2 years ago
• trufflesecurity / of-CORS
  ☆146Updated last year
• tomnomnom / dnsgrep
  Quickly Search Large DNS Datasets
  ☆59Updated 5 years ago
• yeswehack / xsstools
  xss development frameworks, with the goal of making payload writing easier.
  ☆136Updated 3 months ago
• harsh-bothra / Security-Talks-Slides
  This repository contains all the Talk slides that I have given at various security conferences, events & meetups.
  ☆35Updated 3 years ago
• michael1026 / trashcompactor
  ☆65Updated last year
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆138Updated 3 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• pwn0sec / PwnSSRF
  A Python based scanner to find potential SSRF parameters in a web application.
  ☆71Updated 3 years ago
• arijitdirghangi / Find-Hardcoded
  You can find hardcoded Api-Key,Secret,Token Etc..
  ☆78Updated 2 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆130Updated 10 months ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆59Updated 3 years ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆63Updated 10 months ago
• timhudson / jwt-secret
  Bruteforce a JWT against a list of passwords
  ☆72Updated 7 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆63Updated 2 years ago
• hakluke / hakcron
  Easily schedule commands to run multiple times at set intervals (like a cronjob, but with one command)
  ☆84Updated 3 years ago