yeswehack / vulnerable-code-snippets

Related projects: ⓘ

• BishopFox / jsluice
  Extract URLs, paths, secrets, and other interesting bits from JavaScript
  ☆1,362Updated 4 months ago
• 0xacb / recollapse
  REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
  ☆923Updated 8 months ago
• laluka / bypass-url-parser
  bypass-url-parser
  ☆996Updated last week
• botesjuan / Burp-Suite-Certified-Practitioner-Exam-Study
  Burp Suite Certified Practitioner Exam Study
  ☆876Updated 3 months ago
• trickest / wordlists
  Real-world infosec wordlists, updated regularly
  ☆1,350Updated this week
• hakluke / hakoriginfinder
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆840Updated 8 months ago
• six2dez / OneListForAll
  Rockyou for web fuzzing
  ☆2,550Updated 3 weeks ago
• alexbieber / Bug_Bounty_writeups
  BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
  ☆818Updated 2 years ago
• Karanxa / Bug-Bounty-Wordlists
  A repository that includes all the important wordlists used while bug hunting.
  ☆1,167Updated last year
• YaS5in3 / Bug-Bounty-Wordlists
  ☆599Updated last month
• devploit / nomore403
  Tool to bypass 403/40X response codes.
  ☆1,086Updated last month
• xnl-h4ck3r / waymore
  Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!
  ☆1,646Updated 2 months ago
• trickest / inventory
  Asset inventory of over 800 public bug bounty programs.
  ☆1,234Updated this week
• Syslifters / sysreptor
  Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
  ☆1,358Updated 2 weeks ago
• snoopysecurity / Vulnerable-Code-Snippets
  A small collection of vulnerable code snippets
  ☆673Updated 3 months ago
• Hari-prasaanth / Web-App-Pentest-Checklist
  A OWASP Based Checklist With 500+ Test Cases
  ☆615Updated last year
• t3l3machus / toxssin
  An XSS exploitation command-line interface and payload generator.
  ☆1,233Updated 2 months ago
• NafisiAslH / KnowledgeSharing
  ☆1,107Updated last year
• psiinon / open-source-web-scanners
  A list of open source web security scanners
  ☆861Updated last week
• p0dalirius / Awesome-RCE-techniques
  Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
  ☆1,824Updated 11 months ago
• Syslifters / OffSec-Reporting
  Offensive Security OSCP, OSWP, OSEP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA Exam and Lab Reporting / Note-Taking Tool
  ☆696Updated 5 months ago
• onhexgroup / Conferences
  Conference presentation slides
  ☆1,442Updated last month
• TakSec / chatgpt-prompts-bug-bounty
  ChatGPT Prompts for Bug Bounty & Pentesting
  ☆529Updated 11 months ago
• xnl-h4ck3r / GAP-Burp-Extension
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,205Updated 2 months ago
• hisxo / ReconAIzer
  A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…
  ☆823Updated last year
• e11i0t4lders0n / Web-Application-Pentest-Checklist
  ☆520Updated 3 years ago
• six2dez / pentest-book
  ☆1,536Updated 2 weeks ago
• APTRS / APTRS
  Automated Penetration Testing Reporting System
  ☆792Updated 3 weeks ago
• The-XSS-Rat / SecurityTesting
  ☆1,005Updated 4 months ago
• lefayjey / linWinPwn
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆1,796Updated 2 months ago