A collection of web pages vulnerable to SQL injection flaws
☆352Apr 14, 2022Updated 3 years ago
Alternatives and similar repositories for testenv
Users that are interested in testenv are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Database takeover UDF repository☆184Mar 11, 2018Updated 8 years ago
- This is a SOAP service written in C# that has intentional SQL injection vulnerabilties.☆21Nov 27, 2016Updated 9 years ago
- Spray SMB with hashes, Then psexec☆32Jul 3, 2019Updated 6 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Aug 10, 2013Updated 12 years ago
- The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of co…☆447Aug 7, 2020Updated 5 years ago
- A simple XSS challenge example using Zombie.js☆10Apr 8, 2015Updated 10 years ago
- Cross-site request forgery Learning Platform☆21Sep 13, 2014Updated 11 years ago
- Panoptic is an open source penetration testing tool that automates the process of search and retrieval of content for common log and conf…☆320Mar 16, 2026Updated last week
- A unique automated LFi Exploiter with Bind/Reverse Shells☆301Jun 25, 2015Updated 10 years ago
- Shell script that runs on UNIX systems (tested on Solaris 9, HPUX 11, various Linux distributions, FreeBSD 6.2). It detects misconfigurat…☆87Sep 26, 2016Updated 9 years ago
- a CMD shell in masm that listens on port 8080☆12Dec 19, 2020Updated 5 years ago
- penetration testing framework that can use socks4/socks5 proxy.☆53Sep 6, 2014Updated 11 years ago
- Client/Server scripts to transfer files over DNS. Client scripts are small and only use native tools on the host OS.☆208Jan 24, 2016Updated 10 years ago
- LNHG - Mass Web Fingerprinter☆63Feb 22, 2016Updated 10 years ago
- Vulnerable Grails application☆43Jun 12, 2015Updated 10 years ago
- Pivoter is a proxy tool for pentesters to have easier lateral movement.☆144Aug 9, 2015Updated 10 years ago
- application server attack toolkit☆687Apr 6, 2020Updated 5 years ago
- Simple web app for displaying cowrie data in your browser☆12Jun 2, 2016Updated 9 years ago
- Working Rsh Client With Bind/Reverse Shell☆19Sep 15, 2015Updated 10 years ago
- `wash` is a framework for creating and interfacing with trojans that can establish a "web shell" on a compromised web server. It is desig…☆31Nov 7, 2016Updated 9 years ago
- based on search engine and get the valid infomation to test the vulnerability☆16Jun 16, 2016Updated 9 years ago
- Security Advisories and Researches☆15Aug 19, 2014Updated 11 years ago
- Transmissions over time based covert channels across a network. Modifies the time intervals between packets to transmit data.☆22Jun 26, 2022Updated 3 years ago
- PowerShell Empire Web Interface☆330May 20, 2023Updated 2 years ago
- Java Untrusted Deserialization Exploits Tools☆67Dec 13, 2015Updated 10 years ago
- For when Plan A fails☆13Jan 24, 2012Updated 14 years ago
- An automated XSS payload generator written in python.☆314Jun 2, 2016Updated 9 years ago
- ☆196Sep 27, 2018Updated 7 years ago
- A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network☆574Dec 9, 2017Updated 8 years ago
- A Burp Suite extension that checks for the HTTPoxy vulnerability.☆96Aug 25, 2021Updated 4 years ago
- DefCon24☆122Sep 2, 2016Updated 9 years ago
- sqlmap embed in burpsuite☆303Aug 15, 2018Updated 7 years ago
- This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.☆687Oct 27, 2016Updated 9 years ago
- ☆83Jan 29, 2016Updated 10 years ago
- Repository aimed to compile scripts and tools that can be used during penetration tests to assess the security of different flash related…☆10Jan 5, 2015Updated 11 years ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆824Dec 6, 2017Updated 8 years ago
- rev-door is a small backdoor with only ONE line of PHP code, which takes command from POST data and execute it on server side. It is like…☆26May 12, 2016Updated 9 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,245Feb 20, 2026Updated last month
- Auto Domain Admin and Network Exploitation.☆299Dec 21, 2017Updated 8 years ago