webpwnized / mutillidae
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.
☆1,358Updated 2 months ago
Alternatives and similar repositories for mutillidae
Users that are interested in mutillidae are comparing it to the libraries listed below
Sorting:
- OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…☆1,602Updated 2 years ago
- Web application fuzzer☆6,169Updated 8 months ago
- A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.☆1,126Updated last year
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,787Updated 3 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆879Updated 6 months ago
- A curated list of amazingly awesome Burp Extensions☆3,173Updated 2 months ago
- This script is intended to automate your reconnaissance process in an organized fashion☆1,959Updated 3 years ago
- Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios☆1,342Updated 2 years ago
- Writeups for HacktheBox 'boot2root' machines☆1,955Updated last year
- 🎯 Command Injection Payload List☆3,269Updated 9 months ago
- Advanced vulnerability scanning with Nmap NSE☆3,607Updated 8 months ago
- 🎯 XML External Entity (XXE) Injection Payload List☆1,172Updated 9 months ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,862Updated last month
- Automatic SSRF fuzzer and exploitation tool☆3,188Updated 2 months ago
- ☆2,261Updated last year
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,723Updated last year
- A script that you can run in the background!☆2,840Updated 9 months ago
- CeWL is a Custom Word List Generator☆2,219Updated 6 months ago
- Take a list of domains and probe for working HTTP and HTTPS servers☆2,996Updated 10 months ago
- a collection of handy bookmarks☆1,060Updated last year
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,159Updated 2 years ago
- Web and mobile application security training platform☆1,376Updated 10 months ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,813Updated 3 years ago
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,602Updated 3 years ago
- Subdomain Takeover tool written in Go☆1,969Updated last year
- A script to set up a quick Ubuntu 17.10 x64 box with tools I use.☆1,192Updated 10 months ago
- enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts☆1,268Updated 3 weeks ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,284Updated 6 months ago
- File upload vulnerability scanner and exploitation tool.☆3,198Updated this week
- A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study mater…☆2,520Updated 4 years ago