tanprathan / owasp-mstg
The Mobile Security Testing Guide (MSTG) is a manual for testing the security of mobile apps. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS). The MSTG is meant to provide a baseline set of test cases for black-box and white-box security tests, and to help ensure c…
☆33Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for owasp-mstg
- SSLScrape | A scanning tool for scaping hostnames from SSL certificates.☆43Updated 5 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids.☆30Updated 6 years ago
- List of Google Dorks for sites that have responsible disclosure program / bug bounty program☆19Updated 5 years ago
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆34Updated 9 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆38Updated 6 years ago
- Now use your favorite Google Dorks techniques to find vulnerabilities and earn Bounties.☆31Updated 4 years ago
- In-depth DNS Enumeration and Network Mapping☆33Updated 5 years ago
- ☆36Updated 5 years ago
- Reestructured LemonBooster.☆44Updated 3 months ago
- Ease-of-use extension for Web Application penetration testing☆21Updated 7 years ago
- A high-performance DNS stub resolver for bulk lookups☆20Updated 7 years ago
- A python script that finds endpoints in JavaScript files☆42Updated 5 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆36Updated 7 years ago
- A listing of the most common vuln that you can link in your PoCs☆27Updated 6 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆20Updated 4 years ago
- ASN reconnaissance script☆23Updated 4 years ago
- Wheres My Git - Find /.git/config files based on dirs found in home url☆20Updated 2 years ago
- This repo hosts multiple codes, content, checklists etc which can help a penetration tester in a web application auditing.☆21Updated last year
- Recon_profile☆36Updated 4 years ago
- The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable we…☆13Updated 6 years ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆36Updated 6 years ago
- These are my notes for OSCP preparation. Hope you'll find them useful.☆14Updated 5 years ago
- ☆57Updated last year
- A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms ti…☆90Updated 3 years ago
- Bash script to automate Bug Bounty Reconnaissance☆37Updated 3 years ago
- ☆27Updated 4 years ago
- Chrome Extension for XSS Hunter Payloads☆13Updated 8 years ago
- A simple Cherry Tree template that can be used to organize bug bounties☆35Updated 5 years ago
- Bug Bounty Dork☆68Updated 2 years ago
- Small script to check a list of domains against open redirect vulnerability☆22Updated 2 years ago