skiptomyliu / solutions-bwapp

Related projects ⓘ

Alternatives and complementary repositories for solutions-bwapp

• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆226Updated 4 years ago
• frizb / Bypassing-Web-Application-Firewalls
  A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
  ☆273Updated 6 years ago
• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆137Updated 5 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆245Updated 3 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆107Updated 5 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆289Updated last year
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆169Updated last year
• raesene / bWAPP
  ☆133Updated 2 years ago
• evilcos / xss.swf
  a tiny tool for swf hacking, just browse it:)
  ☆238Updated 11 years ago
• nixawk / fuzzdb
  Web Fuzzing Discovery and Attack Pattern Database
  ☆113Updated 6 years ago
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆330Updated 4 years ago
• foobarto / redteam-notebook
  Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.
  ☆432Updated 3 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆138Updated 5 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆58Updated 6 years ago
• ewilded / shelling
  SHELLING - a comprehensive OS command injection payload generator
  ☆438Updated 4 years ago
• nccgroup / CrossSiteContentHijacking
  Content hijacking proof-of-concept using Flash, PDF and Silverlight
  ☆381Updated 5 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆423Updated 4 years ago
• kacperszurek / exploits
  ☆259Updated 5 years ago
• AonCyberLabs / xxe-recursive-download
  ☆227Updated 9 years ago
• BugHunterID / HackerOneDB
  The unofficial HackerOne disclosure Timeline
  ☆135Updated 5 years ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆237Updated 5 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆482Updated 10 months ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆101Updated 3 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆514Updated 4 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆201Updated 9 months ago
• kozmic / laravel-poc-CVE-2018-15133
  PoC for CVE-2018-15133 (Laravel unserialize vulnerability)
  ☆248Updated 8 months ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆282Updated 4 years ago
• andreafioraldi / cve_searchsploit
  Search an exploit in the local exploitdb database by its CVE
  ☆168Updated 2 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆162Updated last year