snoopysecurity / dvws
Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities. NOTE: This project is out of date, please use https://github.com/snoopysecurity/dvws-node
☆455Updated 3 years ago
Alternatives and similar repositories for dvws:
Users that are interested in dvws are comparing it to the libraries listed below
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…☆481Updated 6 years ago
- Exploitation for XSS☆714Updated 3 years ago
- OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.☆342Updated last month
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆425Updated 5 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆353Updated last month
- Panoptic is an open source penetration testing tool that automates the process of search and retrieval of content for common log and conf…☆314Updated 3 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆257Updated 3 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆633Updated 6 years ago
- small set of PHP scripts to practice exploiting LFI, RFI and CMD injection vulns☆329Updated last year
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- Pillage web accessible GIT, HG and BZR repositories☆317Updated 8 years ago
- A collection of useful Serverless functions I use when pentesting☆384Updated 2 years ago
- Pentest Lab on OpenStack with Heat, Chef provisioning and Docker☆380Updated 7 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆249Updated 3 years ago
- CMS/LMS/Library etc Versions Fingerprinter☆258Updated 3 years ago
- This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…☆159Updated 3 years ago
- A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network☆575Updated 7 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆469Updated 5 years ago
- A Python Framework For NoSQL Scanning and Exploitation☆601Updated 4 months ago
- REST/JSON API to the Burp Suite security tool.☆558Updated 11 months ago
- A security scanner for HTTP response headers.☆300Updated 3 months ago
- Fierce.pl Domain Scanner☆299Updated 5 years ago
- Penetration Testing tools - one repo to clone them all... containing latest pen testing tools☆529Updated 5 years ago
- An intentionally designed broken web application based on REST API.☆575Updated 3 years ago
- Github for the scripts utilised during Penetration test☆235Updated 7 years ago
- ☆326Updated 7 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆254Updated 10 months ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆352Updated 4 years ago
- A tool to find and exploit servers vulnerable to Shellshock☆333Updated 2 years ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆543Updated 7 years ago