Search Results - RepositoryStats

9.6k

9.7k

mit

156

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

ctf owasp appsec hacking vulnapp security javascript pentesting vulnerable owasp-top-10 hacktoberfest owasp-top-ten 24pullrequests application-security

Created 2014-09-19

20,030 commits to master branch, last one 7 days ago

sql-injection-payload-list payloadbox

1.1k

4.4k

mit

91

🎯 SQL Injection Payload List

Created 2019-10-30

16 commits to master branch, last one 2 years ago

Massive-Web-Application-Penetration-Testing-Bug-Bounty-Notes xalgord

186

1.2k

unknown

23

This repository has no description...

owasp hacking xalgord bugbounty resources bug-bounty collection owasp-top-10 bugbountytips ethical-hacking

Created 2021-02-26

33 commits to main branch, last one 6 months ago

mutillidae webpwnized

396

1.2k

gpl-3.0

48

OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, secu...

10 top web owasp appsec security training application owasp-top-10 cybersecurity penetration-testing

Created 2018-09-28

305 commits to main branch, last one 14 days ago

vapi roottusk

291

1.1k

gpl-3.0

18

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

api php cors owasp appsec docker postman apitop10 bugbounty exercises owasp-top-10 hacktoberfest owasp-top-ten appsec-tutorials hacktoberfest-accepted vulnerable-application

Created 2020-09-06

133 commits to master branch, last one about a year ago

secDevLabs globocom

410

870

bsd-3-clause

33

A laboratory for learning secure web and mobile development in a practical manner.

labs security training development owasp-top-10 hacktoberfest vulnerability hacktoberfest2022

Created 2018-12-01

709 commits to master branch, last one 10 months ago

akto akto-api-security

179

849

mit

14

Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

idor security devsecops api-testing api-security owasp-top-10 api-discovery authorization hacktoberfest authentication security-testing threat-detection hacktoberfest2023 devsecops-pipeline api-security-testing sensitive-data-exposure

Created 2023-01-31

3,517 commits to master branch, last one 20 hours ago

Offensive-Resources Zeyad-Azima

195

844

unknown

31

A Huge Learning Resources with Labs For Offensive Security Players

Created 2021-02-14

104 commits to main branch, last one about a year ago

dvna appsecco

660

672

mit

26

Damn Vulnerable NodeJS Application

dvna hack owasp nodejs testing security vulnerable owasp-top-10 vulnerable-apps

Created 2017-11-13

42 commits to master branch, last one 6 months ago

iGoat-Swift OWASP

163

395

gpl-3.0

18

OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS

ipa ios-swift owasp-igoat ios-security owasp-top-10 runtime-security insecure-data-storage

Created 2018-04-03

129 commits to master branch, last one about a year ago

gapps bmarsh9

83

359

other

22

Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com

csc grc pci asvs cmmc nist soc2 27002 cis18 hipaa owasp pci-dss iso27001 nist-csf security compliance nist800-53 owasp-top-10

Created 2022-11-22

171 commits to main branch, last one about a month ago

local-sheriff ghostery

24

304

gpl-3.0

12

Think of Local sheriff as a recon tool in your browser (WebExtension). While you normally browse the internet, Local Sheriff works in the background to empower you in identifying what data points (PII...

data-leakage owasp-top-10 privacy-tools web-extension gdpr-checklist sensitive-data-exposure

Created 2018-04-25

87 commits to master branch, last one 3 years ago

aws-firewall-factory globaldatanet

21

224

apache-2.0

5

Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and staging, all efficiently managed centrally with ...

aws cdk waf owasp wafv2 firewall security devsecops governance typescript owasp-top-10 hacktoberfest amazon-web-services

Created 2021-11-05

577 commits to master branch, last one 4 days ago

forbidden ivan-sincek

39

222

mit

5

Bypass 4xx HTTP response status codes and more. Based on PycURL and Python Requests.

Created 2021-10-04

9 commits to main branch, last one 16 days ago

30-API-security-tests akto-api-security

26

198

unknown

5

🚀 Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.

bola testing security owasp-top-10

Created 2023-02-07

15 commits to master branch, last one about a year ago

ASST OWASP

33

153

mit

8

OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.

asst owasp owasp-top-10 cybersecurity security-audit security-testing security-hardening security-assessments vulnerability-scanner vulnerability-scanners vulnerability-detection vulnerability-assessment web-vulnerability-scanner web-vulnerability-scanners security-assesment-security-tools

Created 2020-10-30

26 commits to main branch, last one 2 months ago

VulnPlanet yevh

21

151

gpl-3.0

16

Vulnerable code snippets with fixes for Web2, Web3, API, iOS, Android and Infrastructure-as-Code (IaC)

Created 2023-01-02

113 commits to main branch, last one 3 months ago

Backup-Finder moeinfatehi

29

148

gpl-3.0

1

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)

burp owasp burpsuite pentesting appsecurity portswigger backupfinder data-leakage owasp-top-10 owasp-top-ten burp-extensions burpsuite-extender penetration-testing application-security sensitive-data-exposure

Created 2018-09-10

37 commits to master branch, last one 2 months ago

Admin-Panel_Finder moeinfatehi

20

116

gpl-3.0

6

A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)

Created 2018-09-18

9 commits to master branch, last one about a year ago

microservice-patterns hellosatish

117

114

apache-2.0

6

Code to share the knowledge I gained while designing and implementing micro services

golang api-sec security swagger-ui spring-boot event-driven owasp-top-10 kafka-streams microservices service-discovery microservices-architecture

Created 2018-03-18

32 commits to master branch, last one 3 years ago

CVE-2022-23808 dipakpanchal05

24

113

unknown

3

phpMyAdmin XSS

poc xss owasp exploit hacking infosec redteam zeroday database bugbounty pentesting phpmyadmin redteaming exploitation owasp-top-10 vulnerability cross-site-scripting

Created 2022-02-01

10 commits to main branch, last one 2 years ago

xss_vulnerability_challenges moeinfatehi

14

112

unknown

3

this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.

xss owasp infosec pentesting xss-filter appsecurity xss-attacks owasp-top-10 owasp-top-ten xss-detection input-validation xss-exploitation xss-vulnerability penetration-testing application-security cross-site-scripting

Created 2018-06-30

11 commits to master branch, last one 2 years ago

reactive-spring-security-5-workshop andifalk

46

109

apache-2.0

10

Hands-On workshop for securing a reactive spring boot 2 application in multiple steps

oauth2 spring workshop spring-mvc spring-boot owasp-top-10 openid-connect spring-webflux spring-security reactive-streams

Created 2018-03-22

170 commits to master branch, last one about a year ago

sqlinjection-training-app appsecco

54

93

mit

8

A simple PHP application to learn SQL Injection detection and exploitation techniques.

appsec exploit owasp-top-10 training-app web-security owasp-top-ten sql-injection vulnerable-apps vulnerable-web-app application-security

Created 2019-05-12

11 commits to master branch, last one 4 years ago

Portswigger_labs sh3bu

24

79

unknown

2

This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's name, description, and my step-by-step solution, as well as any ad...

writeups websecurity owasp-top-10 portswigger-labs

Created 2023-03-14

467 commits to main branch, last one 2 months ago

fencer abunuwas

10

71

mit

6

Automated API security testing

api jwt oauth2 graphql openapi testing rest-api security api-security owasp-top-10 sql-injection api-security-testing

Created 2023-01-31

52 commits to main branch, last one about a year ago

www-project-top-10-low-code-no-code-security-risks OWASP

23

62

other

14

OWASP Low-Code/No-Code Top 10

owasp appsec nocode infosec lowcode security owasp-top-10 cybersecurity

Created 2021-08-23

321 commits to main branch, last one 12 days ago

www-project-machine-learning-security-top-10 OWASP

20

59

other

18

OWASP Machine Learning Security Top 10 Project

ai ml mlai mlops mlsec owasp top10 appsec mlsecops mlsecurity owasp-top-10

Created 2019-09-12

259 commits to master branch, last one 2 days ago

WebAppPentestRoadmap ossamayasserr

9

55

gpl-3.0

1

Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)

pentest roadmap security burpsuite tryhackme portswigger owasp-top-10 web-security penetration-testing information-security

Created 2023-08-25

8 commits to main branch, last one 9 months ago

VulWebaju Aju100

13

50

mit

3

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

hacking bugbounty pentesting owasp-top-10 hacktoberfest penetration-testing

Created 2021-04-12

40 commits to main branch, last one about a year ago