39 results found Sort:

11.4k
10.6k
mit
162
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Created 2014-09-19
20,087 commits to master branch, last one about a month ago
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
Created 2021-02-26
37 commits to main branch, last one 3 months ago
418
1.3k
gpl-3.0
49
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, secu...
Created 2018-09-28
806 commits to main branch, last one 16 days ago
311
1.2k
gpl-3.0
19
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
Created 2020-09-06
133 commits to master branch, last one about a year ago
Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure
Created 2023-01-31
5,157 commits to master branch, last one 9 hours ago
A Huge Learning Resources with Labs For Offensive Security Players
Created 2021-02-14
104 commits to main branch, last one 2 years ago
443
909
bsd-3-clause
33
A laboratory for learning secure web and mobile development in a practical manner.
Created 2018-12-01
710 commits to master branch, last one 2 months ago
715
712
mit
26
Damn Vulnerable NodeJS Application
Created 2017-11-13
42 commits to master branch, last one about a year ago
100
455
other
25
Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com
Created 2022-11-22
172 commits to main branch, last one 6 months ago
177
414
gpl-3.0
18
OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
Created 2018-04-03
129 commits to master branch, last one about a year ago
24
308
gpl-3.0
11
Think of Local sheriff as a recon tool in your browser (WebExtension). While you normally browse the internet, Local Sheriff works in the background to empower you in identifying what data points (PII...
Created 2018-04-25
87 commits to master branch, last one 4 years ago
Enhance the security of your web applications effortlessly with AWS Firewall Factory. Safeguard your valuable assets through seamless WAF deployment, updates, and staging, all centrally managed with A...
Created 2021-11-05
626 commits to master branch, last one about a month ago
Bypass 4xx HTTP response status codes and more. Based on PycURL and Python Requests.
Created 2021-10-04
14 commits to main branch, last one about a month ago
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
Created 2023-08-25
8 commits to main branch, last one about a year ago
🚀 Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.
Created 2023-02-07
15 commits to master branch, last one about a year ago
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
Created 2018-09-10
37 commits to master branch, last one 8 months ago
21
157
gpl-3.0
16
Vulnerable code snippets with fixes for Web2, Web3, API, iOS, Android and Infrastructure-as-Code (IaC)
Created 2023-01-02
115 commits to main branch, last one 4 months ago
Code to share the knowledge I gained while designing and implementing micro services
Created 2018-03-18
32 commits to master branch, last one 4 years ago
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
Created 2018-06-30
11 commits to master branch, last one 2 years ago
Hands-On workshop for securing a reactive spring boot 2 application in multiple steps
Created 2018-03-22
170 commits to master branch, last one about a year ago
A simple PHP application to learn SQL Injection detection and exploitation techniques.
Created 2019-05-12
11 commits to master branch, last one 5 years ago
API Security Vulnerability Scanner designed to help you secure your APIs.
Created 2023-08-22
429 commits to main branch, last one 16 hours ago
This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's name, description, and my step-by-step solution, as well as any ad...
Created 2023-03-14
467 commits to main branch, last one 9 months ago
Automated API security testing
Created 2023-01-31
57 commits to main branch, last one 4 months ago
OWASP Machine Learning Security Top 10 Project
Created 2019-09-12
264 commits to master branch, last one 3 months ago
OWASP Low-Code/No-Code Top 10
Created 2021-08-23
324 commits to main branch, last one 12 days ago