tanprathan / owasp-mstgLinks
The Mobile Security Testing Guide (MSTG) is a manual for testing the security of mobile apps. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS). The MSTG is meant to provide a baseline set of test cases for black-box and white-box security tests, and to help ensure c…
☆34Updated 8 years ago
Alternatives and similar repositories for owasp-mstg
Users that are interested in owasp-mstg are comparing it to the libraries listed below
Sorting:
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆36Updated 10 years ago
- A simple Cherry Tree template that can be used to organize bug bounties☆39Updated 6 years ago
- ☆59Updated 2 years ago
- ☆38Updated 6 years ago
- XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…☆62Updated 4 years ago
- This repo hosts multiple codes, content, checklists etc which can help a penetration tester in a web application auditing.☆21Updated 2 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids.☆31Updated 7 years ago
- ☆61Updated 4 years ago
- This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.☆76Updated 6 years ago
- List of Google Dorks for sites that have responsible disclosure program / bug bounty program☆22Updated 6 years ago
- ☆72Updated 5 years ago
- Penetration Testing Checklist☆37Updated 5 years ago
- The tools I have programmed to help me with bugbounty's☆117Updated 6 years ago
- XSS Payload without Anything.☆106Updated 6 years ago
- Domain availbility checker☆39Updated 4 years ago
- Handy bash and python scripts for bug bounty hunting!☆47Updated 4 years ago
- A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms ti…☆93Updated 4 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆25Updated 5 years ago
- SSLScrape | A scanning tool for scaping hostnames from SSL certificates.☆47Updated 6 years ago
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆27Updated 6 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆37Updated 8 years ago
- Bash script to automate Bug Bounty Reconnaissance☆47Updated 4 years ago
- API Pentesting notes.☆96Updated last year
- Documentation for knoXSS tool by @brutelogic☆29Updated 8 years ago
- ASN reconnaissance script☆133Updated last year
- The Cleveridge Subdomain Scanner finds subdomains of a given domain.☆36Updated 5 years ago
- Finds the End-Points in JavaScript files☆97Updated 4 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆112Updated 2 years ago
- Now use your favorite Google Dorks techniques to find vulnerabilities and earn Bounties.☆31Updated 5 years ago
- ☆27Updated 5 years ago