Web application with vulnerabilities found in real cases, both in pentests and in Bug Bounty programs.
☆171Nov 17, 2023Updated 2 years ago
Alternatives and similar repositories for web-hacking-playground
Users that are interested in web-hacking-playground are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…☆152Dec 26, 2023Updated 2 years ago
- Cloud Exploit Framework☆112May 11, 2022Updated 3 years ago
- Highly configurable script for dictionary/spray attacks against online web applications.☆53Nov 8, 2022Updated 3 years ago
- A tool to parse, deduplicate, and query multiple port scans.☆57Aug 11, 2023Updated 2 years ago
- Gampung tools for find nuclei template from github☆12Sep 6, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Educational Python implementation of RSA cryptosystem featuring key generation, encryption/decryption, and Base64 key exchange. Designed …☆10May 20, 2025Updated 11 months ago
- hackxpert labs☆18Jun 29, 2022Updated 3 years ago
- ☆16Oct 30, 2022Updated 3 years ago
- Scripts and piece of codes used for Active Directory configuration☆83Feb 14, 2023Updated 3 years ago
- The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap.☆437Jul 11, 2022Updated 3 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆58Jan 10, 2023Updated 3 years ago
- Some oneliners with descriptions and Regex that I frequently use while doing bug hunting. More to come 🚀🚀☆22Dec 24, 2022Updated 3 years ago
- ☆30Mar 23, 2026Updated last month
- Modular framework to exploit UPS devices☆65Mar 1, 2023Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Smart context-based SSRF vulnerability scanner.☆361May 5, 2022Updated 3 years ago
- D3Ext's Forward Shell☆120Oct 15, 2023Updated 2 years ago
- Learn 101 is a challenge to keep the learning spirit going on and challenge myself to learn something daily for 101 days.☆30Jun 7, 2022Updated 3 years ago
- This small script can download or update all the GitHub repo of your choice.☆22Apr 13, 2024Updated 2 years ago
- An XSS exploitation command-line interface and payload generator.☆1,419Jan 19, 2025Updated last year
- Kraken, a modular multi-language webshell coded by @secu_x11☆550Feb 10, 2024Updated 2 years ago
- Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…☆14Feb 6, 2022Updated 4 years ago
- Analyzing AD domains for security risks related to user accounts☆64Nov 11, 2022Updated 3 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆180Feb 14, 2023Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆46Mar 20, 2021Updated 5 years ago
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- InfoHound is an OSINT to extract a large amount of data given a web domain name.☆164Oct 8, 2025Updated 6 months ago
- A simple tool for bypassing file upload restrictions.☆901Jul 22, 2024Updated last year
- Wireless Intrusion Detection System for Hak5's WiFi Coconut☆31Apr 5, 2023Updated 3 years ago
- 🛠️ In this repository you will find all the OSCP tools I created and used during the course. 🛠️☆13Dec 23, 2023Updated 2 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Feb 11, 2023Updated 3 years ago
- 🚪 Quick & dirty Wordpress Command Execution Shell☆66Jan 24, 2022Updated 4 years ago
- A tool to dump users's .plist on a Mac OS system and to convert them into a crackable hash☆51Oct 12, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Enhanced 403 bypass header☆21Sep 12, 2022Updated 3 years ago
- Script for generating revshells☆478Sep 10, 2024Updated last year
- A source code static analysis platform for AppSec enthusiasts.☆272Updated this week
- Never forget where you inject.☆300Aug 15, 2025Updated 8 months ago
- ☆317Jul 6, 2024Updated last year
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆79Jan 13, 2023Updated 3 years ago
- Subdomains analysis and generation tool. Reveal the hidden!☆245Jun 8, 2025Updated 10 months ago