snoopysecurity / dvws-node
Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.
☆454Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for dvws-node
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆306Updated 7 months ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆262Updated last year
- API Security Project aims to present unique attack & defense methods in API Security field☆278Updated 2 years ago
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆918Updated 2 months ago
- A simple web app with a XXE vulnerability.☆224Updated 2 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆875Updated 4 months ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆668Updated last year
- Golang client for querying SecurityTrails API data☆538Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆532Updated 10 months ago
- Burp Suite Logger++: Log activities of all the tools in Burp Suite☆164Updated 4 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆803Updated 2 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆945Updated 2 years ago
- Burp Suite Certified Practitioner Exam Study☆917Updated last week
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,246Updated 3 months ago
- ☆354Updated 2 years ago
- OSWE Preparation☆563Updated 2 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆934Updated 4 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆355Updated 3 years ago
- this html file creates a csrf poc form to any http request.☆267Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆50Updated 6 months ago
- ActiveScan++ Burp Suite Plugin☆208Updated 11 months ago
- BChecks collection for Burp Suite Professional and Burp Suite Enterprise Edition☆630Updated this week
- Tool to help exploit XXE vulnerabilities☆542Updated last year
- A wordlist of API names for web application assessments☆756Updated last year
- Go client to communicate with Chaos DB API.☆639Updated this week
- Damn Vulnerable Cloud Application☆184Updated 6 years ago
- Tips on how to write exploit scripts (faster!)☆416Updated 3 months ago
- PeTeReport is an open-source application vulnerability reporting tool.☆470Updated 4 months ago
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,202Updated 3 months ago
- Repo for all the OWASP-SKF Docker lab examples☆438Updated 3 months ago