softwaresecured / secure-code-review-checklist
A starter secure code review checklist
☆178Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for secure-code-review-checklist
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆306Updated 7 months ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆111Updated last year
- All Things Bug Bounty☆110Updated 2 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆168Updated 2 years ago
- Repo for all the OWASP-SKF Docker lab examples☆438Updated 3 months ago
- Damn Vulnerable Java (EE) Application☆130Updated 9 months ago
- Damn Vulnerable Cloud Application☆184Updated 6 years ago
- ☆181Updated last year
- ☆175Updated this week
- Some good resources for getting started with application security☆135Updated 3 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆262Updated last year
- Purposely vulnerable Java application to help lead secure coding workshops☆168Updated 4 months ago
- GraphQL security workshop labs☆101Updated 4 months ago
- A Broken Application - Very Vulnerable!☆129Updated last week
- OWASP Code Review Guide Web Repository☆121Updated 2 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆457Updated last year
- Awesome information for WebSockets security research☆250Updated 2 years ago
- Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks☆76Updated 2 years ago
- ☆169Updated 3 years ago
- GraphQL security testing tool☆117Updated 2 years ago
- This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.☆236Updated 5 years ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆214Updated 5 years ago
- Stuff done in preparation for AWAE course and OSWE certification☆151Updated 4 years ago
- materials we hand out☆138Updated last month
- ☆231Updated 4 months ago
- Continuous monitoring for JavaScript files☆218Updated 4 years ago
- Unofficial documentation for the great tool Param Miner☆173Updated 2 years ago
- SSRF testing tool☆241Updated last year
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆203Updated last week
- ☆391Updated 3 years ago