raesene / bWAPPLinks
☆143Updated 3 years ago
Alternatives and similar repositories for bWAPP
Users that are interested in bWAPP are comparing it to the libraries listed below
Sorting:
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...☆232Updated 5 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆141Updated 6 years ago
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆88Updated 3 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆75Updated 3 years ago
- Lab for exploring SSRF vulnerabilities☆246Updated 4 years ago
- YSOSERIAL Integration with burp suite☆166Updated 2 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆91Updated last month
- SHELLING - a comprehensive OS command injection payload generator☆110Updated 6 years ago
- Faster xss scanner,support reflected-xss and dom-xss☆446Updated last year
- Java deserialization exploitation lab.☆235Updated 6 years ago
- A lab for playing with NoSQL Injection☆131Updated 4 years ago
- In progress rough solutions to bWAPP / bee-box☆177Updated 5 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆291Updated 2 years ago
- HTTP file upload scanner for Burp Proxy☆488Updated last year
- SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.☆465Updated 7 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆603Updated 6 years ago
- Burp extension to perform Java Deserialization Attacks☆212Updated last year
- A web-application vulnerability scanner☆117Updated 4 years ago
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆393Updated 2 years ago
- XXE Out of Band Server.☆170Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆251Updated 7 months ago
- Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (…☆314Updated 6 years ago
- ☆96Updated 2 months ago
- Pentest/BugBounty progress control with scanning modules☆281Updated 4 years ago
- Lesser Known Web Attack Lab☆331Updated 5 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆112Updated 2 years ago
- A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers☆279Updated 6 years ago
- Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…☆75Updated 7 years ago
- Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).☆507Updated 3 years ago
- Crack the shared secret of a HS256-signed JWT☆246Updated last year