The Web Security Testing Guide is a comprehensive open source guide to testing the security of web applications and web services.
☆32Oct 27, 2025Updated 8 months ago
Alternatives and similar repositories for wstg
Users that are interested in wstg are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.☆11Apr 6, 2020Updated 6 years ago
- API for Asset Service☆15Aug 15, 2024Updated last year
- Python Duo Push API☆41Apr 22, 2026Updated 2 months ago
- GraphQL automatic fuzzing tool☆16Jul 16, 2021Updated 4 years ago
- ☆17Nov 18, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Several script and images used with the juice jacking kiosks☆12Jul 21, 2013Updated 12 years ago
- Nuclei plugin for BurpSuite☆15Nov 29, 2024Updated last year
- ☆24Jan 26, 2021Updated 5 years ago
- Expand urls into one url for each path depth☆31Jul 29, 2020Updated 5 years ago
- A BurpSuite plugin for BBRF☆27Nov 17, 2024Updated last year
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆52Jun 14, 2020Updated 6 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Feb 19, 2021Updated 5 years ago
- Download content of an open bucket☆16Dec 28, 2019Updated 6 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆26May 26, 2020Updated 6 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- H&E- Burp Highlighter and Extractor☆18Mar 29, 2023Updated 3 years ago
- ☆62Jul 23, 2024Updated last year
- ☆17May 7, 2021Updated 5 years ago
- Bug bounty API dashboard aggregating data from HackerOne, Bugcrowd and other platforms☆42Aug 13, 2023Updated 2 years ago
- Map the catalog (i.e. find /) for z/OS☆11Mar 17, 2026Updated 3 months ago
- Hackthebox tools☆13Mar 3, 2019Updated 7 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆214Oct 31, 2024Updated last year
- Some contributions in the nuclei-templates repository☆64Jun 18, 2022Updated 4 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆46Jun 3, 2024Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Create your Custom Wordlist For Fuzzing☆204Oct 14, 2024Updated last year
- Collection of some pentesting and bugbounty resources☆50Feb 5, 2022Updated 4 years ago
- Automatic SQL injection and database takeover tool☆45Nov 27, 2025Updated 7 months ago
- A lightweight version of my bug bounty hunting framework designed to be run on Synack's LP+ machines.☆12Jul 11, 2023Updated 2 years ago
- Recon-Ninja☆88Mar 24, 2024Updated 2 years ago
- Discovery Header Bug Bounty to DoD☆49Aug 20, 2021Updated 4 years ago
- Interview questions to screen offensive (red team/pentest) candidates☆12Apr 7, 2017Updated 9 years ago
- Oyedata is a tool to perform OData assessments☆13Aug 3, 2012Updated 13 years ago
- De-clutter a list of URLs☆390Mar 8, 2026Updated 3 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆35Feb 12, 2022Updated 4 years ago
- Cheat-Sheet of tools for penetration testing☆53May 23, 2023Updated 3 years ago
- ☆13Feb 14, 2022Updated 4 years ago
- Convert asciinema JSON files to GIF for embedding in Github, Medium, email, Slack and more!☆10Sep 24, 2020Updated 5 years ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆60Mar 2, 2022Updated 4 years ago
- An automation framework for CyberSecurity Tools☆12Dec 6, 2025Updated 6 months ago
- HTTP request smuggling tools☆17Aug 17, 2020Updated 5 years ago