virajkulkarni14/WebDeveloperSecurityChecklist external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

virajkulkarni14/WebDeveloperSecurityChecklist

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/virajkulkarni14/WebDeveloperSecurityChecklist)

Close

virajkulkarni14 / WebDeveloperSecurityChecklistView on GitHubMore

• External links
• Readme badge

A checklist of important security issues you should consider when creating a web application.

☆425May 10, 2021Updated 5 years ago

Alternatives and similar repositories for WebDeveloperSecurityChecklist

Users that are interested in WebDeveloperSecurityChecklist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• sqreen / DevOpsSecurityChecklist

  View on GitHub
  ☆85Oct 15, 2022Updated 3 years ago
• jacob-baines / longtime-sunshine

  View on GitHub
  Nashorn Post Exploitation
  ☆32Feb 12, 2018Updated 8 years ago
• silentsignal / wpc

  View on GitHub
  Windows Privesc Check
  ☆20May 20, 2014Updated 12 years ago
• strozfriedberg / MAM-Security-Checklist

  View on GitHub
  Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution
  ☆20Sep 2, 2015Updated 10 years ago
• DavidJFelix / RedTeam

  View on GitHub
  Evil snippets of Underhanded Red Team tactics
  ☆11Jul 5, 2017Updated 8 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Charliedean / PsexecSpray

  View on GitHub
  Spray SMB with hashes, Then psexec
  ☆32Jul 3, 2019Updated 6 years ago
• Charliedean / NetcatUP

  View on GitHub
  Upgrade your netcat shell today!
  ☆58Jul 11, 2017Updated 8 years ago
• digininja / sitediff

  View on GitHub
  Fingerprint a web app using local files as the fingerprint sources
  ☆39May 16, 2017Updated 9 years ago
• andrewkabai / vulnwindrv

  View on GitHub
  Vulnerable Windows Driver with exploits which were used for demonstration purposes on Hunting and exploiting bugs in kernel drivers prese…
  ☆13Jan 29, 2013Updated 13 years ago
• eur0pa / tko-subs

  View on GitHub
  A tool that can help detect and takeover subdomains with dead DNS records
  ☆12Aug 23, 2018Updated 7 years ago
• raesene / sectest

  View on GitHub
  Docker Automated Build for Security Testing Tools
  ☆14Apr 8, 2022Updated 4 years ago
• isp1r0 / DVNA

  View on GitHub
  Damn Vulnerable Node Application
  ☆20Dec 22, 2015Updated 10 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab

  View on GitHub
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆42Mar 14, 2017Updated 9 years ago
• 4ARMED / terraform-burp-collaborator

  View on GitHub
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Nov 7, 2017Updated 8 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• subinacls / Filibuster

  View on GitHub
  ☆27Jul 18, 2017Updated 8 years ago
• SmeegeSec / GitHub-Wiki-Auditor

  View on GitHub
  Python script to check GitHub accounts for world-editable wiki pages
  ☆21May 8, 2023Updated 3 years ago
• akampjes / p0rk-crackling

  View on GitHub
  Distributed password cracker for operating over high latency networks of loosely coupled hosts.
  ☆13Jul 30, 2013Updated 12 years ago
• digininja / nosqlilab

  View on GitHub
  A lab for playing with NoSQL Injection
  ☆136Feb 23, 2026Updated 3 months ago
• dsopas / rfd-checker

  View on GitHub
  RFD Checker - security CLI tool to test Reflected File Download issues
  ☆64Feb 26, 2019Updated 7 years ago
• bad-hombres / supertty

  View on GitHub
  Reverse or bind shell catcher which uprgrades the caught shell to be more like a regular shell
  ☆26Mar 17, 2019Updated 7 years ago
• Sliim / pentest-lab

  View on GitHub
  Pentest Lab on OpenStack with Heat, Chef provisioning and Docker
  ☆382Nov 2, 2017Updated 8 years ago
• agrawalsmart7 / otphacks

  View on GitHub
  ☆21Nov 13, 2019Updated 6 years ago
• maaaaz / tgcd-windows

  View on GitHub
  The great TCP Gender Changer (tgcd) tool compiled for Windows
  ☆14Apr 18, 2016Updated 10 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• laplante-sean / vulny

  View on GitHub
  Vulnerable Linux socket game for educational purposes
  ☆22Apr 22, 2017Updated 9 years ago
• VirtueSecurity / aws-extender

  View on GitHub
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆256Feb 23, 2022Updated 4 years ago
• shieldfy / API-Security-Checklist

  View on GitHub
  Checklist of the most important security countermeasures when designing, testing, and releasing your API
  ☆23,234Feb 10, 2026Updated 3 months ago
• mgale / DHCPSnoop

  View on GitHub
  DHCP Snooping app - great for finding rogue DHCP servers
  ☆35Jan 25, 2018Updated 8 years ago
• hexx0r / CVE-2015-6132

  View on GitHub
  Microsoft Office / COM Object DLL Planting
  ☆15May 14, 2016Updated 10 years ago
• SpiderLabs / vnc-auth

  View on GitHub
  NMAP NSE that enumerates VNC authentication types
  ☆17Dec 21, 2010Updated 15 years ago
• SpiderLabs / portia

  View on GitHub
  Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account ha…
  ☆501Aug 7, 2020Updated 5 years ago
• NetSPI / MoneyX

  View on GitHub
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆31May 10, 2016Updated 10 years ago
• mandatoryprogrammer / JudasDNS

  View on GitHub
  Nameserver DNS poisoning attacks made easy
  ☆526Feb 26, 2017Updated 9 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• bonzitechnology / gograbber

  View on GitHub
  A horizontal and vertical web content enumerator
  ☆51Apr 7, 2026Updated last month
• nettitude / xss_payloads

  View on GitHub
  Exploitation for XSS
  ☆735Aug 5, 2021Updated 4 years ago
• smiegles / subdomainDB

  View on GitHub
  SubdomainDB is a simple self-hosted API that allows you to maintain your own subdomain database.
  ☆31Jan 8, 2018Updated 8 years ago
• JGillam / burp-paramalyzer

  View on GitHub
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆159Jul 10, 2025Updated 10 months ago
• AceRockson / WAFFLE

  View on GitHub
  Web Application Firewall For Limited Exploitation
  ☆17Nov 15, 2017Updated 8 years ago
• tacticaljmp / danglingaws

  View on GitHub
  Tool to tackle problematic dangling domains in Amazon Web Services.
  ☆14Oct 11, 2017Updated 8 years ago
• diljith369 / avbypassGo

  View on GitHub
  AV Bypass
  ☆29Jan 12, 2018Updated 8 years ago