A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
☆53Mar 29, 2023Updated 3 years ago
Alternatives and similar repositories for awesome-vulnerable
Users that are interested in awesome-vulnerable are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆15Jul 17, 2024Updated last year
- ☆14Feb 4, 2020Updated 6 years ago
- A security-first linter for code that shouldn't need linting☆19Sep 12, 2023Updated 2 years ago
- A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network c…☆47Jun 3, 2026Updated last week
- Protect against subdomain takeover☆95Apr 26, 2026Updated last month
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Screenshot Shenanigans☆25Nov 20, 2017Updated 8 years ago
- OWASP Foundation web repository☆66May 17, 2026Updated 3 weeks ago
- Offensive Assembly code snippets.☆13Jul 12, 2023Updated 2 years ago
- Small wiki for Mobile Application Penetration Testing Tools☆12Apr 8, 2021Updated 5 years ago
- Security tool against dependency typosquatting attacks☆56Updated this week
- LC256 - CBM style 256 color SMD computer☆18Jun 15, 2025Updated 11 months ago
- ☆22Feb 3, 2026Updated 4 months ago
- Additional active scan checks for BURP☆28Oct 3, 2024Updated last year
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Oct 3, 2023Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆16Apr 10, 2025Updated last year
- An automated script to extract hidden images from Tecno Camon X☆12Sep 23, 2023Updated 2 years ago
- ☆14Jan 8, 2026Updated 5 months ago
- IDA Hexrays To Joern☆45Nov 7, 2024Updated last year
- Very loud vBulletin exploit☆14Aug 12, 2020Updated 5 years ago
- Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04☆116Jun 12, 2024Updated last year
- ☆18Jul 30, 2024Updated last year
- We borrow the concept of 'personas' from UX/service design and apply it to threat actors to improve understanding between security, techn…☆11Jun 17, 2020Updated 5 years ago
- ☆116Feb 11, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆31Nov 30, 2025Updated 6 months ago
- ☆10Mar 25, 2025Updated last year
- littleoldearthquake☆12Jul 15, 2014Updated 11 years ago
- A simple Meterpreter stager written in Rust.☆45Nov 2, 2025Updated 7 months ago
- A structure-aware HTTP fuzzing library☆222Jan 12, 2026Updated 4 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆24Apr 27, 2026Updated last month
- A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system☆207May 11, 2023Updated 3 years ago
- ☆93Dec 15, 2025Updated 5 months ago
- ☆42Jun 2, 2026Updated last week
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆114Nov 13, 2024Updated last year
- ☆16Jun 15, 2025Updated 11 months ago
- Antenna analyzer based on RigExpert Zero II and Arduino☆13Jan 25, 2024Updated 2 years ago
- This is a phishing ready platform. Unlike other phishing methods, EvilnoVNC allows you to bypass 2FA using a real browser via noVNC conn…☆11Apr 7, 2023Updated 3 years ago
- A Repo for the Magnetic case of the Sweep keyboard☆16Nov 19, 2023Updated 2 years ago
- Yet Another SCA tool☆13Nov 10, 2022Updated 3 years ago
- peda like debugger script for windbg/windbgx and mingw-gdb☆11Dec 31, 2021Updated 4 years ago