snyk-labs / exploit-workshopLinks
A step by step workshop to exploit various vulnerabilities in Node.js and Java applications
☆156Updated last year
Alternatives and similar repositories for exploit-workshop
Users that are interested in exploit-workshop are comparing it to the libraries listed below
Sorting:
- A curated list of amazingly bug bounty tips from security researchers around the world.☆105Updated 6 years ago
- Reclaim control of your Burp Suite Repeater tabs with this powerful extension☆67Updated 3 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆103Updated last year
- A tool geared towards pentesting APIs using OpenAPI definitions.☆176Updated 2 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆353Updated 4 years ago
- ☆173Updated 2 years ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆215Updated 5 years ago
- The Bug Bounty Wiki☆172Updated 6 years ago
- You can read the writeup on this script here☆193Updated 3 years ago
- Various Payload wordlists☆236Updated last month
- ☆44Updated 4 years ago
- HTTP parameter discovery suite.☆94Updated 5 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- ☆148Updated 3 years ago
- subdomain bruteforce list☆101Updated 7 months ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆316Updated last year
- Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.☆67Updated last month
- ☆44Updated 4 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆80Updated 2 years ago
- Manual JavaScript Linting is a Bug☆49Updated 4 years ago
- List HackerOne private program assets☆152Updated 3 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- vulnerable single sign on☆147Updated 10 months ago
- A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.☆62Updated 2 years ago
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆81Updated 6 years ago
- ☆76Updated 4 years ago
- A script that can resolve an input file of domains and scan them with masscan☆156Updated 4 years ago
- ☆71Updated 4 years ago
- Burp Suite Extension to monitor new scope☆198Updated 4 years ago
- Evenly distributes scanner load across targets☆87Updated last month