Intentionaly very vulnerable API with bonus bad coding practices
☆53Nov 15, 2025Updated 7 months ago
Alternatives and similar repositories for vulnapi
Users that are interested in vulnapi are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A simple Node.js Express REST app with some OWASP vulnerabilities.☆23May 14, 2026Updated last month
- A very vulnerable implementation of a GraphQL API.☆62Nov 12, 2021Updated 4 years ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)☆47Feb 2, 2023Updated 3 years ago
- ☆88May 1, 2023Updated 3 years ago
- 🐑 Websheep is an app based on a willingly vulnerable ReSTful APIs.☆59Mar 25, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆1,251Apr 7, 2026Updated 2 months ago
- Vulnerable API☆425Mar 4, 2023Updated 3 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆138Dec 22, 2022Updated 3 years ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆511Mar 29, 2026Updated 3 months ago
- 🔍 Improve your files enumeration with specific extensions!☆18Jan 11, 2022Updated 4 years ago
- A Python based Recon Tool to search for Storage Buckets☆11Jan 21, 2023Updated 3 years ago
- stdin writes to slack☆13Feb 8, 2020Updated 6 years ago
- An intentionally designed broken web application based on REST API☆13May 25, 2022Updated 4 years ago
- LLM Vulnerable Application☆13Aug 19, 2023Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Penetration Testing Lab☆29Jul 17, 2014Updated 11 years ago
- Collection of over 9000 xss payloads | heavy xss collection☆13Dec 6, 2022Updated 3 years ago
- bugBounty Scripts☆11Feb 3, 2023Updated 3 years ago
- ☆41Jul 1, 2023Updated 3 years ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Oct 25, 2023Updated 2 years ago
- Community documentation for known Hack The Box v4 API endpoints☆26Oct 6, 2022Updated 3 years ago
- ☆18Jul 26, 2021Updated 4 years ago
- Javascript payload that inject a malicious payload into the copy-buffer of the victim☆37May 25, 2018Updated 8 years ago
- Ansible build for Afl++ Frida-Mode☆25May 11, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Rewriting Proxy for HTML and Javascript. Towards a Self-healing Web.☆13Jul 28, 2020Updated 5 years ago
- Research on GraphQL from an AppSec point of view.☆418May 24, 2023Updated 3 years ago
- Mass IP Grabbbing From Bing | Mr.MaGnoM☆13Jun 6, 2018Updated 8 years ago
- Post-Exploitation Tool to Steal MySQL Data, and with persistence extract all data from MySQL table every time that Windows are opened wit…☆14Apr 2, 2023Updated 3 years ago
- Script made for bypassing antivirus using Powershell Injection method. Place your shellcode from msfvenom on line 15, the script can be c…☆15Jun 14, 2023Updated 3 years ago
- Use Frida DBI to instrument binary and perform basic-block code coverage that is fed back to AFL.☆12Nov 23, 2019Updated 6 years ago
- Solutions of xchg rax,rax☆14Jun 2, 2020Updated 6 years ago
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.☆1,339Jan 10, 2025Updated last year
- List of Command&Control (C2) software☆50Nov 11, 2022Updated 3 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- BSQLi de coffinxp réécrie en GO, son repos a été reporté en masse, il a donc été fermé.☆13Jul 26, 2024Updated last year
- ✍️ A curated list of CVE PoCs.☆13Jan 24, 2018Updated 8 years ago
- ☆16Feb 15, 2022Updated 4 years ago
- s3 brute force tool☆44May 7, 2021Updated 5 years ago
- completely ridiculous API (crAPI)☆1,534May 14, 2026Updated last month
- Drupal 7.x Services Module Remote Code Execution Exploit - https://www.ambionics.io/blog/drupal-services-module-rce☆14Mar 9, 2017Updated 9 years ago
- ☆14Apr 25, 2024Updated 2 years ago