The Web Security Testing Guide is a comprehensive open source guide to testing the security of web applications and web services.
☆31Oct 27, 2025Updated 4 months ago
Alternatives and similar repositories for wstg
Users that are interested in wstg are comparing it to the libraries listed below
Sorting:
- The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.☆11Apr 6, 2020Updated 5 years ago
- API for Asset Service��☆15Aug 15, 2024Updated last year
- GraphQL automatic fuzzing tool☆16Jul 16, 2021Updated 4 years ago
- Python Duo Push API☆41May 31, 2025Updated 9 months ago
- A BurpSuite plugin for BBRF☆25Nov 17, 2024Updated last year
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Feb 19, 2021Updated 5 years ago
- ☆13Feb 14, 2022Updated 4 years ago
- ☆60Jul 26, 2024Updated last year
- Nuclei plugin for BurpSuite☆15Nov 29, 2024Updated last year
- ☆63Jul 23, 2024Updated last year
- Hackthebox tools☆12Mar 3, 2019Updated 6 years ago
- ☆18Nov 18, 2022Updated 3 years ago
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆51Jun 14, 2020Updated 5 years ago
- vīlicus is a bug bounty api dashboard☆41Aug 13, 2023Updated 2 years ago
- Expand urls into one url for each path depth☆31Jul 29, 2020Updated 5 years ago
- Automatic SQL injection and database takeover tool☆45Nov 27, 2025Updated 3 months ago
- Download content of an open bucket☆16Dec 28, 2019Updated 6 years ago
- Discovery Header Bug Bounty to DoD☆49Aug 20, 2021Updated 4 years ago
- ☆17May 7, 2021Updated 4 years ago
- Mario the game but you rescue the princess by hacking.☆22Feb 12, 2022Updated 4 years ago
- Resolvers updated daily for reconftw☆47Feb 7, 2023Updated 3 years ago
- HTTP requests of FrontPage expolit☆25Dec 19, 2013Updated 12 years ago
- Create your Custom Wordlist For Fuzzing☆201Oct 14, 2024Updated last year
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆211Oct 31, 2024Updated last year
- HTTP request smuggling tools☆18Aug 17, 2020Updated 5 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆26May 26, 2020Updated 5 years ago
- Cheat-Sheet of tools for penetration testing☆54May 23, 2023Updated 2 years ago
- Recon Custom WordList Ganerator☆58Jul 2, 2020Updated 5 years ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet☆56Oct 23, 2024Updated last year
- ☆24Jan 26, 2021Updated 5 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Jun 25, 2025Updated 8 months ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆59Mar 2, 2022Updated 3 years ago
- Privilege escalation in Docker☆31Jun 30, 2022Updated 3 years ago
- Awesome Penetration Testing A collection of awesome penetration testing resources☆64Jan 26, 2018Updated 8 years ago
- De-clutter a list of URLs☆386Feb 3, 2026Updated 3 weeks ago
- Some contributions in the nuclei-templates repository☆62Jun 18, 2022Updated 3 years ago
- Informações extras referentes ao Treinamento Novo Pentest Profissional - https://desecsecurity.com/novo-pentest-profissional☆15May 13, 2023Updated 2 years ago
- scripts☆10Aug 25, 2023Updated 2 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆31Jun 22, 2023Updated 2 years ago