tkisason / vulnapi
Intentionaly very vulnerable API with bonus bad coding practices
☆36Updated 7 months ago
Related projects: ⓘ
- Target practice for ffuf☆55Updated 3 years ago
- HTTP parameter discovery suite.☆59Updated 4 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆55Updated last year
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges☆31Updated 2 years ago
- XSS Bypass☆29Updated 7 months ago
- A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host☆42Updated 4 years ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆110Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- HTTP verb tampering & methods enumeration☆51Updated 2 years ago
- Create your own recon & vulnerability scanner with Trickest and GitHub☆49Updated 11 months ago
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆50Updated 4 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆62Updated 3 years ago
- Damn Vulnerable Rails app☆11Updated 12 years ago
- Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.☆46Updated 2 years ago
- Offensive Security Web Assessor Resources Repo☆20Updated 10 months ago
- ☆50Updated 3 years ago
- This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities☆86Updated last year
- A list of threat sinks used in the manual security source code review for application security☆69Updated last year
- Analysis and management tools for an Open Asset Model database☆38Updated this week
- ☆61Updated last year
- Handy scripts and one-liners to make life easier☆34Updated last year
- These Repositories About My Recon Methodology To Give Some Idea For Other Hunter How To Do Recon☆43Updated last year
- A quick ‘n dirty nmap parser written in Golang to convert nmap xml to IP:Port notation.☆118Updated 2 months ago
- ☆99Updated this week
- This is my personal Enumeration Handbook that I used for the OSCP 2023☆20Updated last year
- Template used for my OSCP exam.☆26Updated 2 years ago
- ☆37Updated 3 years ago
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Updated 6 months ago
- Notes for CRTP☆38Updated 3 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆91Updated 2 years ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆112Updated 2 years ago