wisec / OWASP-Testing-Guide-v5
The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.
☆76Updated 5 years ago
Alternatives and similar repositories for OWASP-Testing-Guide-v5:
Users that are interested in OWASP-Testing-Guide-v5 are comparing it to the libraries listed below
- Vulnerable SAML infrastructure training applicaiton☆51Updated 2 years ago
- ☆81Updated 5 years ago
- This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities☆91Updated last year
- OWASP practice lab, just a few copy/pastes away. Fully stacked and ready to go with Docker☆18Updated 6 years ago
- This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.☆64Updated 3 years ago
- ☆80Updated 3 years ago
- ☆71Updated 4 years ago
- Notes for CRTP☆40Updated 4 years ago
- OSCP Exam Report Template in Markdown☆34Updated 3 years ago
- HTTP parameter discovery suite.☆63Updated 4 years ago
- API Pentesting notes.☆96Updated 5 months ago
- Automatically modify the User-Agent header in all Burp requests☆56Updated 7 years ago
- OSWE Preparation☆37Updated 5 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆102Updated last year
- XSS Payload without Anything.☆106Updated 5 years ago
- BurpSuite using the document and some extensions☆68Updated 4 years ago
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆42Updated last year
- ☆104Updated 2 years ago
- Workshop given at Hack in Paris 2019☆121Updated last year
- Awesome cloud enumerator☆40Updated 4 years ago
- A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study mater…☆26Updated 5 years ago
- Preparation for OSWE☆42Updated 5 years ago
- A python based blind SQL injection exploitation script☆137Updated 5 years ago
- ☆17Updated 3 years ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆156Updated last month
- ☆47Updated 8 years ago
- Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks☆78Updated 2 years ago
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆40Updated 4 years ago
- m0chan.github.io☆85Updated 3 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆40Updated 7 years ago