An intentionally designed broken web application based on REST API.
☆578Jun 10, 2021Updated 4 years ago
Alternatives and similar repositories for Tiredful-API
Users that are interested in Tiredful-API are comparing it to the libraries listed below
Sorting:
- Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn rea…☆457Dec 6, 2021Updated 4 years ago
- Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.☆269Aug 22, 2018Updated 7 years ago
- ☆162Dec 7, 2017Updated 8 years ago
- ☆276Oct 19, 2021Updated 4 years ago
- OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.☆355Dec 19, 2025Updated 2 months ago
- Windows / Linux Local Privilege Escalation Workshop☆1,003Jan 15, 2019Updated 7 years ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆667Feb 25, 2021Updated 5 years ago
- Security Tool to Look For Interesting Files in S3 Buckets☆1,456Apr 10, 2024Updated last year
- Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account ha…☆501Aug 7, 2020Updated 5 years ago
- Tools for auditing WAFS☆464Nov 24, 2020Updated 5 years ago
- Damn Vulnerable WordPress Site☆51Feb 24, 2023Updated 3 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆378Oct 12, 2020Updated 5 years ago
- Open-source pentesting management and automation platform by Salesforce Product Security☆599Feb 12, 2022Updated 4 years ago
- Damn Vulnerable NodeJS Application☆761Mar 27, 2024Updated last year
- Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment☆1,194Oct 24, 2018Updated 7 years ago
- Find interesting Amazon S3 Buckets by watching certificate transparency logs.☆1,801Feb 28, 2025Updated last year
- Create randomly insecure VMs☆2,747Feb 8, 2026Updated 3 weeks ago
- SSRF (Server Side Request Forgery) testing resources☆2,483Oct 12, 2024Updated last year
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆629Feb 5, 2019Updated 7 years ago
- Automated Security Testing For REST API's☆2,639Jun 5, 2024Updated last year
- Damn Vulnerable Cloud Application☆208Sep 12, 2018Updated 7 years ago
- ☆2,316Dec 8, 2023Updated 2 years ago
- Damn Vulnerable Thick Client App☆155Jul 16, 2020Updated 5 years ago
- This tool can be used to brute discover GET and POST parameters☆1,393Aug 24, 2019Updated 6 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,120Apr 21, 2024Updated last year
- Damn Vulnerable Rails app☆13Sep 20, 2012Updated 13 years ago
- Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Dir…☆1,623Jan 23, 2024Updated 2 years ago
- A Ruby framework designed to aid in the penetration testing of WordPress systems.☆1,043Nov 24, 2019Updated 6 years ago
- A Tool for Domain Flyovers☆5,906May 22, 2022Updated 3 years ago
- Improved decoder for Burp Suite☆138Aug 30, 2021Updated 4 years ago
- Stealing CSRF tokens with CSS injection (without iFrames)☆322Feb 7, 2018Updated 8 years ago
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 4 years ago
- A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network☆573Dec 9, 2017Updated 8 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Oct 12, 2017Updated 8 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆256Feb 23, 2022Updated 4 years ago
- Issues to consider when planning a red team exercise.☆616Aug 23, 2017Updated 8 years ago
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆227May 8, 2018Updated 7 years ago
- PowerShell Script to Dump Windows Credentials from the Credential Manager☆732Dec 12, 2017Updated 8 years ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆503Updated this week