30 results found Sort:

codingo
NoSQLMap codingo
581
2.9k
gpl-3.0
105
Automated NoSQL database enumeration and web application exploitation tool.
nosql redis couchdb hacking mongodb scanner bugbounty databases enumeration hacking-tool hacktoberfest sql-injection security-audit security-tools nosql-databases mongodb-database security-toolset offensive-security penetration-testing web-application-security
Created 2013-09-24
298 commits to master branch, last one 11 months ago
owtf
owtf owtf
471
1.8k
bsd-3-clause
127
Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
owtf owasp python pentest security framework kali-linux web-application-security
Created 2012-01-19
2,231 commits to develop branch, last one 2 months ago
0xInfection
TIDoS-Framework 0xInfection
392
1.8k
gpl-3.0
124
The Offensive Manual Web Application Penetration Testing Framework.
osint web-fuzzer enumeration exploitation footprinting reconnaissance tidos-framework scanning-enumeration intelligence-gathering vulnerability-analysis vulnerability-detection web-penetration-testing web-application-security
Created 2018-06-08
801 commits to master branch, last one 3 years ago
wallarm
gotestwaf wallarm
215
1.6k
mit
42
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
waf owasp security bugbounty api-security grpc-security rest-security security-tools graphql-security security-testing web-application-firewall web-application-security
Created 2020-01-28
518 commits to master branch, last one about a month ago
codingo
VHostScan codingo
230
1.2k
gpl-3.0
38
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
oscp vhost vhosts hacking scanner security bugbounty ctf-tools hackthebox hacking-tool virtual-host virtual-hosts security-audit security-tools reverse-lookups penetration-test discovery-service offensive-security penetration-testing web-application-security
Created 2017-09-03
344 commits to master branch, last one 11 months ago
Janusec
janusec Janusec
263
1.1k
other
41
JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server ...
waf acme gslb golang gateway janusec web-ssh security load-balance cookie-banner sql-injection port-forwarding cookie-compliance application-gateway application-security k8s-ingress-controller web-application-firewall web-application-security janusec-application-gateway
Created 2018-07-15
367 commits to master branch, last one 4 months ago
payloadbox
xxe-injection-payload-list payloadbox
301
1.1k
mit
23
🎯 XML External Entity (XXE) Injection Payload List
xml xxe hacking infosec payload payloads bugbounty bug-bounty xml-entity websecurity xxe-example xxe-payload xxe-payloads cybersecurity xxe-injection cyber-security xxe-payload-list information-security websecurity-reference web-application-security
Created 2019-11-19
15 commits to master branch, last one about a year ago
wallarm
api-firewall wallarm
56
586
mpl-2.0
25
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
api waf proxy api-waf openapi swagger firewall security apigateway api-gateway api-wrapper api-firewall api-security openapi-spec rest-security security-tools openapi-security openapi-specification web-application-firewall web-application-security
Created 2021-05-14
224 commits to main branch, last one 8 days ago
payloadbox
rfi-lfi-payload-list payloadbox
184
538
mit
18
🎯 RFI/LFI Payload List
lfi rfi appsec payload payloads security bugbounty bug-bounty web-hacking websecurity payload-list rfi-exploiton lfi-exploitation lfi-vulnerability security-research rfi-vulnerabillity security-researcher application-security security-researchers web-application-security
Created 2019-11-04
13 commits to master branch, last one 3 years ago
gildasio
h2t gildasio
36
391
mit
10
h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
http defense headers security hardening web-application-security
Created 2019-03-07
36 commits to master branch, last one 5 years ago
mhmdiaa
second-order mhmdiaa
64
377
mit
7
Second-order subdomain takeover scanner
recon crawler infosec mapping crawling security wordlist pentesting reconnaissance security-tools wordlist-generator penetration-testing web-application-security penetration-testing-tools
Created 2017-06-23
78 commits to master branch, last one about a year ago
vatsalgupta67
All-In-One-CyberSecurity-Resources vatsalgupta67
41
373
unknown
5
List of CyberSecurity Resources and some different Sub-Domains of CyberSecurity
ics scada awesome hacking infosec learning resources redteaming collections awesome-list cybersecurity prerequisites binary-exploitation exploit-development penetration-testing web-application-security
Created 2022-08-31
163 commits to main branch, last one 3 months ago
PalindromeLabs
STEWS PalindromeLabs
39
334
apache-2.0
7
A Security Tool for Enumerating WebSockets
security websocket websockets websocket-security penetration-testing websockets-security web-application-security penetration-testing-tools
Created 2021-11-11
17 commits to main branch, last one 2 years ago
Mehdi0x90
Web_Hacking Mehdi0x90
54
320
unknown
6
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
owasp recon bypass exploit hacking pentest redteam payloads security bugbounty cheatsheet webhacking api-pentest enumeration websecurity api-security vulnerability bug-bounty-hunters penetration-testing web-application-security
Created 2023-08-18
259 commits to main branch, last one 2 days ago
ImAyrix
cut-cdn ImAyrix
42
298
mit
2
✂️ Removing CDN IPs from the list of IP addresses
cdn recon golang pentest bugbounty bugbounty-tool reconnaissance web-application penetration-testing web-application-security
Created 2022-08-31
95 commits to master branch, last one 3 months ago
PalindromeLabs
awesome-websocket-security PalindromeLabs
25
252
apache-2.0
12
Awesome information for WebSockets security research
security websocket websockets security-tools websocket-security websockets-security web-application-security
Created 2021-11-10
5 commits to main branch, last one 2 years ago
ZishanAdThandar
pentest ZishanAdThandar
39
247
gpl-3.0
7
Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.
hacking infosec pentest redteam security cheetsheet pentesting powershell redteaming hacking-tool cybersecurity cyber-security activedirectory ethical-hacking whitehat-hacker cybersecurity-tool penetration-testing web-application-security penetration-testing-tools web-application-penetration-testing
Created 2020-04-09
724 commits to main branch, last one 7 days ago
ImAyrix
fallparams ImAyrix
33
242
mit
2
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
xss ssrf pentest wordlist bugbounty web-security bug-bounty-hunters wordlist-generator penetration-testing web-application-security
Created 2023-12-31
19 commits to master branch, last one 2 months ago
migueltc13
TryHackMe migueltc13
131
239
gpl-3.0
7
Master cybersecurity skills with this TryHackMe free path, includes a collection of my write-ups, solutions and progress tracking.
ctf learn osint hacking ctf-tools tryhackme collaborate cryptography exploitation ctf-challenges injection-attacks tryhackme-writeups penetration-testing web-application-security linux-privilege-escalation metasploit-and-exploitation owasp-top-10-vulnerabilities network-scanning-and-enumeration password-cracking-and-hash-cracking
Created 2023-01-15
136 commits to main branch, last one 15 days ago
sqreen
go-agent sqreen
30
206
other
13
Sqreen's Application Security Management for the Go language
waf rasp agent owasp scans golang sqreen attacks security protection security-agent instrumentation microservices-security web-application-security
This repository has been archived (exclude archived)
Created 2018-11-14
764 commits to master branch, last one 2 years ago
tprynn
web-methodology tprynn
34
203
other
8
Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
web appsec security documentation web-application security-testing application-security web-application-security
Created 2020-09-10
11 commits to master branch, last one 20 days ago
mhmdiaa
chronos mhmdiaa
32
143
mit
1
Wayback Machine OSINT Framework
recon infosec mapping security wordlist wordlists pentesting reconnaissance security-tools wayback-machine wordlist-generator penetration-testing web-application-security penetration-testing-tools
Created 2017-08-01
17 commits to main branch, last one 3 months ago
MrM8BRH
SuperLibrary MrM8BRH
30
120
mit
8
Information Security Library
isc2 sans books comptia courses hacking infosec mrm8brh bugbounty ec-council kali-linux pentesting superlibrary cybersecurity malware-analysis network-security digital-forensics offensive-security reverse-engineering web-application-security
Created 2020-07-01
30 commits to master branch, last one 5 months ago
spyboy-productions
WebSecProbe spyboy-productions
17
117
mit
2
Bypass 403
access-403 bypass-403 header-injection threat-detection url-manipulation payload-variations web-security-audit historical-analysis http-request-analysis security-assessment-tool vulnerability-assessment web-application-security wayback-machine-integration web-vulnerability-detection
Created 2023-09-14
45 commits to main branch, last one 3 months ago
CyberAlbSecOP
Awesome_CyberSec_Bible CyberAlbSecOP
12
48
unknown
1
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
hacking privacy security devsecops bug-bounty pentesting ai-security os-security api-security cybersecurity cloud-security cyber-security ethical-hacking malware-analysis incident-response social-engineering penetration-testing threat-intelligence web-application-security
Created 2024-01-11
33 commits to main branch, last one about a month ago
kljunowsky
CVE-2023-36845 kljunowsky
13
47
mit
2
Juniper Firewalls CVE-2023-36845 - RCE
poc rce hacking juniper security bugbounty juniper-srx bugbountytips cybersecurity cve-2023-36845 bugbountytricks juniper-firewall juniper-networks proof-of-concept bug-bounty-hunting remote-code-execution remote-command-execution web-application-security
Created 2023-09-26
6 commits to main branch, last one 10 months ago
DoS0x99
cyber-security-books DoS0x99
9
46
unknown
1
A collection of cyber security books
books forensics cryptography hardware-sec network-security software-security reverse-engineering software-exploitation web-application-security
Created 2023-06-09
1 commits to main branch, last one about a year ago
teler-sh
teler-proxy teler-sh
6
45
apache-2.0
5
🔐 teler Proxy enabling seamless integration with teler WAF 🛡️ to protect locally running web service against a web-based attacks. 🥷
waf teler firewall teler-waf teler-proxy proxy-server reverse-proxy tunnel-server secure-by-default intrusion-detection intrusion-prevention web-application-firewall web-application-security
Created 2023-07-06
89 commits to master branch, last one 3 months ago
timokoessler
easy-waf timokoessler
4
38
mit
2
An easy-to-use Web Application Firewall (WAF) for Node.js. Can be used with Express, Fastify, NextJS, NuxtJS ... or plain Node.js http.
waf nodejs security javascript typescript mit-license web-application-firewall web-application-security
Created 2022-07-16
89 commits to main branch, last one 2 months ago
MrPr0fessor
Google-Dorks-for-Cross-site-Scripting-XSS MrPr0fessor
3
32
mit
2
Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML conte...
xss cyber find-xss xss-payload google-dorks xss-payloads cyber-security xss-vulnerability cross-site-scripting ethical-hacking-tools vulnerability-scanners vulnerability-detection web-penetration-testing vulnerability-assessment web-application-security penetration-testing-tools
Created 2023-08-30
2 commits to main branch, last one about a year ago