webpwnized / mutillidae
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.
☆1,268Updated this week
Related projects ⓘ
Alternatives and complementary repositories for mutillidae
- OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…☆1,508Updated last year
- This script is intended to automate your reconnaissance process in an organized fashion☆1,924Updated 3 years ago
- ☆2,253Updated 3 months ago
- 🎯 Command Injection Payload List☆3,008Updated 4 months ago
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,111Updated last year
- ☆2,183Updated 11 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,684Updated 3 years ago
- CeWL is a Custom Word List Generator☆1,999Updated 3 weeks ago
- A curated list of amazingly awesome Burp Extensions☆3,000Updated this week
- Take a list of domains and probe for working HTTP and HTTPS servers☆2,883Updated 4 months ago
- Windows / Linux Local Privilege Escalation Workshop☆1,881Updated 2 years ago
- enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts☆1,183Updated last month
- Red Teaming & Pentesting checklists for various engagements☆2,508Updated 3 months ago
- Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios☆1,326Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,794Updated 7 months ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,699Updated 2 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆5,945Updated last year
- ☆1,504Updated last year
- linuxprivchecker.py -- a Linux Privilege Escalation Check Script☆1,569Updated 2 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,057Updated last month
- Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload cre…☆3,444Updated last month
- offsec batteries included☆1,508Updated 8 months ago
- This repository holds all the list of advanced XSS payloads that can be used in penetration testing. These payloads can be loaded into XS…☆1,033Updated 4 months ago
- Automated NoSQL database enumeration and web application exploitation tool.☆2,929Updated 3 months ago
- Writeups for HacktheBox 'boot2root' machines☆1,898Updated last year
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,478Updated 2 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆4,996Updated 3 weeks ago
- Find domains and subdomains related to a given domain☆3,045Updated 5 months ago
- a collection of handy bookmarks☆1,038Updated 10 months ago
- The Swiss Army knife for automated Web Application Testing☆2,166Updated 6 months ago