yogisec / VulnerableSAMLApp

Related projects: ⓘ

• k3nundrum / CRTP
  Notes for CRTP
  ☆38Updated 3 years ago
• chanpu9 / OSWE
  Preparation for OSWE
  ☆39Updated 4 years ago
• v1ll41n / H1-Report-Finder
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42Updated 4 years ago
• w4fz5uck5 / OSWE
  OSWE Preparation
  ☆37Updated 5 years ago
• synack / wstg
  The Web Security Testing Guide is a comprehensive open source guide to testing the security of web applications and web services.
  ☆25Updated last year
• rinetd / BurpSuite-1
  BurpSuite using the document and some extensions
  ☆65Updated 4 years ago
• RakeshKengale / RaKKeN
  Information Security Information From Web
  ☆26Updated this week
• m0chan / pwk-cheatsheet
  ☆45Updated 7 years ago
• Vanshal / AWAE-PREP
  ☆16Updated 3 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆81Updated 3 years ago
• 0xb1tByte / eWPTXv1-Journey
  This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurity
  ☆23Updated 4 years ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆86Updated last year
• BBhacKing / jwt_secrets
  A list of "secrets" from JWT sample code and readme files.
  ☆51Updated 3 years ago
• DK9510 / web-app-exploitation
  ☆18Updated last year
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆43Updated 3 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆67Updated 4 years ago
• s0j0hn / AWAE-OSWE-Prep
  ☆117Updated 3 years ago
• h4ckboy19 / XXE_A_TO_Z
  ☆44Updated 2 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• dinosn / synackDUO
  Python Duo Push API
  ☆28Updated 2 months ago
• areyou1or0 / Infosec-Interview-Questions
  ☆39Updated this week
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆86Updated 4 years ago
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆101Updated 5 years ago
• un4gi / mBot
  ☆20Updated this week
• PortSwigger / serialization-examples
  ☆38Updated 9 months ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆81Updated last year
• Ophion-Security / sret
  ☆99Updated this week
• gexpose / synackAPI
  ☆82Updated this week
• antonytuff / Red-Team-Notes
  OSCP guide and Red Team assessment Guide
  ☆33Updated 4 years ago