The Web Security Testing Guide is a comprehensive open source guide to testing the security of web applications and web services.
☆31Oct 27, 2025Updated 6 months ago
Alternatives and similar repositories for wstg
Users that are interested in wstg are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.☆11Apr 6, 2020Updated 6 years ago
- API for Asset Service☆14Aug 15, 2024Updated last year
- GraphQL automatic fuzzing tool☆16Jul 16, 2021Updated 4 years ago
- ☆18Nov 18, 2022Updated 3 years ago
- Nuclei plugin for BurpSuite☆15Nov 29, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆24Jan 26, 2021Updated 5 years ago
- Expand urls into one url for each path depth☆31Jul 29, 2020Updated 5 years ago
- A BurpSuite plugin for BBRF☆26Nov 17, 2024Updated last year
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆52Jun 14, 2020Updated 5 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Feb 19, 2021Updated 5 years ago
- Download content of an open bucket☆16Dec 28, 2019Updated 6 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆26May 26, 2020Updated 5 years ago
- H&E- Burp Highlighter and Extractor☆18Mar 29, 2023Updated 3 years ago
- ☆62Jul 23, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ☆17May 7, 2021Updated 4 years ago
- vīlicus is a bug bounty api dashboard☆41Aug 13, 2023Updated 2 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆212Oct 31, 2024Updated last year
- Hackthebox tools☆13Mar 3, 2019Updated 7 years ago
- Some contributions in the nuclei-templates repository☆63Jun 18, 2022Updated 3 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆46Jun 3, 2024Updated last year
- Create your Custom Wordlist For Fuzzing☆202Oct 14, 2024Updated last year
- Automatic SQL injection and database takeover tool☆45Nov 27, 2025Updated 5 months ago
- A lightweight version of my bug bounty hunting framework designed to be run on Synack's LP+ machines.☆12Jul 11, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Recon-Ninja☆86Mar 24, 2024Updated 2 years ago
- Discovery Header Bug Bounty to DoD☆49Aug 20, 2021Updated 4 years ago
- Oyedata is a tool to perform OData assessments☆13Aug 3, 2012Updated 13 years ago
- De-clutter a list of URLs☆387Mar 8, 2026Updated last month
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Feb 12, 2022Updated 4 years ago
- Cheat-Sheet of tools for penetration testing☆53May 23, 2023Updated 2 years ago
- ☆13Feb 14, 2022Updated 4 years ago
- Convert asciinema JSON files to GIF for embedding in Github, Medium, email, Slack and more!☆10Sep 24, 2020Updated 5 years ago
- An automation framework for CyberSecurity Tools☆12Dec 6, 2025Updated 4 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆60Mar 2, 2022Updated 4 years ago
- HTTP request smuggling tools☆17Aug 17, 2020Updated 5 years ago
- How to ARM Yourself - Bsides Tampa 2020☆14Mar 1, 2020Updated 6 years ago
- retrive metadata endpoint data with these one liners.☆41Aug 11, 2020Updated 5 years ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet☆56Oct 23, 2024Updated last year
- Tool for making it easy to collect dns results from the CLI☆40Aug 14, 2024Updated last year
- Tools to assess the DNS security of web applications☆128Oct 5, 2022Updated 3 years ago