30 results found Sort:

codingo
NoSQLMap codingo
584
3.0k
gpl-3.0
105
Automated NoSQL database enumeration and web application exploitation tool.
nosql redis couchdb hacking mongodb scanner bugbounty databases enumeration hacking-tool hacktoberfest sql-injection security-audit security-tools nosql-databases mongodb-database security-toolset offensive-security penetration-testing web-application-security
Created 2013-09-24
298 commits to master branch, last one about a year ago
owtf
owtf owtf
470
1.8k
bsd-3-clause
127
Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
owtf owasp python pentest security framework kali-linux web-application-security
Created 2012-01-19
2,231 commits to develop branch, last one 3 months ago
0xInfection
TIDoS-Framework 0xInfection
392
1.8k
gpl-3.0
125
The Offensive Manual Web Application Penetration Testing Framework.
osint web-fuzzer enumeration exploitation footprinting reconnaissance tidos-framework scanning-enumeration intelligence-gathering vulnerability-analysis vulnerability-detection web-penetration-testing web-application-security
Created 2018-06-08
801 commits to master branch, last one 3 years ago
wallarm
gotestwaf wallarm
218
1.6k
mit
42
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
waf owasp security bugbounty api-security grpc-security rest-security security-tools graphql-security security-testing web-application-firewall web-application-security
Created 2020-01-28
518 commits to master branch, last one 2 months ago
codingo
VHostScan codingo
231
1.2k
gpl-3.0
38
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
oscp vhost vhosts hacking scanner security bugbounty ctf-tools hackthebox hacking-tool virtual-host virtual-hosts security-audit security-tools reverse-lookups penetration-test discovery-service offensive-security penetration-testing web-application-security
Created 2017-09-03
344 commits to master branch, last one about a year ago
Janusec
janusec Janusec
263
1.1k
other
41
JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server ...
waf acme gslb golang gateway janusec web-ssh security load-balance cookie-banner sql-injection port-forwarding cookie-compliance application-gateway application-security k8s-ingress-controller web-application-firewall web-application-security janusec-application-gateway
Created 2018-07-15
367 commits to master branch, last one 5 months ago
payloadbox
xxe-injection-payload-list payloadbox
305
1.1k
mit
23
🎯 XML External Entity (XXE) Injection Payload List
xml xxe hacking infosec payload payloads bugbounty bug-bounty xml-entity websecurity xxe-example xxe-payload xxe-payloads cybersecurity xxe-injection cyber-security xxe-payload-list information-security websecurity-reference web-application-security
Created 2019-11-19
15 commits to master branch, last one about a year ago
wallarm
api-firewall wallarm
56
589
mpl-2.0
25
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
api waf proxy api-waf openapi swagger firewall security apigateway api-gateway api-wrapper api-firewall api-security openapi-spec rest-security security-tools openapi-security openapi-specification web-application-firewall web-application-security
Created 2021-05-14
228 commits to main branch, last one a day ago
payloadbox
rfi-lfi-payload-list payloadbox
185
545
mit
18
🎯 RFI/LFI Payload List
lfi rfi appsec payload payloads security bugbounty bug-bounty web-hacking websecurity payload-list rfi-exploiton lfi-exploitation lfi-vulnerability security-research rfi-vulnerabillity security-researcher application-security security-researchers web-application-security
Created 2019-11-04
13 commits to master branch, last one 3 years ago
Mehdi0x90
Web_Hacking Mehdi0x90
83
444
unknown
8
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
owasp recon bypass exploit hacking pentest redteam payloads security bugbounty cheatsheet webhacking api-pentest enumeration websecurity api-security vulnerability bug-bounty-hunters penetration-testing web-application-security
Created 2023-08-18
268 commits to main branch, last one 2 days ago
gildasio
h2t gildasio
36
394
mit
10
h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
http defense headers security hardening web-application-security
Created 2019-03-07
36 commits to master branch, last one 5 years ago
vatsalgupta67
All-In-One-CyberSecurity-Resources vatsalgupta67
43
390
unknown
5
List of CyberSecurity Resources and some different Sub-Domains of CyberSecurity
ics scada awesome hacking infosec learning resources redteaming collections awesome-list cybersecurity prerequisites binary-exploitation exploit-development penetration-testing web-application-security
Created 2022-08-31
163 commits to main branch, last one 4 months ago
mhmdiaa
second-order mhmdiaa
65
380
mit
7
Second-order subdomain takeover scanner
recon crawler infosec mapping crawling security wordlist pentesting reconnaissance security-tools wordlist-generator penetration-testing web-application-security penetration-testing-tools
Created 2017-06-23
78 commits to master branch, last one about a year ago
PalindromeLabs
STEWS PalindromeLabs
40
338
apache-2.0
7
A Security Tool for Enumerating WebSockets
security websocket websockets websocket-security penetration-testing websockets-security web-application-security penetration-testing-tools
Created 2021-11-11
17 commits to main branch, last one 2 years ago
ImAyrix
cut-cdn ImAyrix
42
303
mit
2
✂️ Removing CDN IPs from the list of IP addresses
cdn recon golang pentest bugbounty bugbounty-tool reconnaissance web-application penetration-testing web-application-security
Created 2022-08-31
95 commits to master branch, last one 4 months ago
ZishanAdThandar
pentest ZishanAdThandar
42
262
gpl-3.0
8
Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.
hacking infosec pentest redteam security cheetsheet pentesting powershell redteaming hacking-tool cybersecurity cyber-security activedirectory ethical-hacking whitehat-hacker cybersecurity-tool penetration-testing web-application-security penetration-testing-tools web-application-penetration-testing
Created 2020-04-09
726 commits to main branch, last one 6 days ago
PalindromeLabs
awesome-websocket-security PalindromeLabs
26
254
apache-2.0
12
Awesome information for WebSockets security research
security websocket websockets security-tools websocket-security websockets-security web-application-security
Created 2021-11-10
5 commits to main branch, last one 2 years ago
ImAyrix
fallparams ImAyrix
33
246
mit
2
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
xss ssrf pentest wordlist bugbounty web-security bug-bounty-hunters wordlist-generator penetration-testing web-application-security
Created 2023-12-31
19 commits to master branch, last one 3 months ago
migueltc13
TryHackMe migueltc13
136
246
gpl-3.0
7
Master cybersecurity skills with this TryHackMe free path, includes a collection of my write-ups, solutions and progress tracking.
ctf learn osint hacking ctf-tools tryhackme collaborate cryptography exploitation ctf-challenges injection-attacks tryhackme-writeups penetration-testing web-application-security linux-privilege-escalation metasploit-and-exploitation owasp-top-10-vulnerabilities network-scanning-and-enumeration password-cracking-and-hash-cracking
Created 2023-01-15
136 commits to main branch, last one about a month ago
sqreen
go-agent sqreen
30
207
other
13
Sqreen's Application Security Management for the Go language
waf rasp agent owasp scans golang sqreen attacks security protection security-agent instrumentation microservices-security web-application-security
This repository has been archived (exclude archived)
Created 2018-11-14
764 commits to master branch, last one 2 years ago
tprynn
web-methodology tprynn
34
202
other
8
Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
web appsec security documentation web-application security-testing application-security web-application-security
Created 2020-09-10
11 commits to master branch, last one about a month ago
mhmdiaa
chronos mhmdiaa
32
146
mit
1
Wayback Machine OSINT Framework
recon infosec mapping security wordlist wordlists pentesting reconnaissance security-tools wayback-machine wordlist-generator penetration-testing web-application-security penetration-testing-tools
Created 2017-08-01
17 commits to main branch, last one 4 months ago
spyboy-productions
WebSecProbe spyboy-productions
17
122
mit
2
Bypass 403
access-403 bypass-403 header-injection threat-detection url-manipulation payload-variations web-security-audit historical-analysis http-request-analysis security-assessment-tool vulnerability-assessment web-application-security wayback-machine-integration web-vulnerability-detection
Created 2023-09-14
45 commits to main branch, last one 4 months ago
MrM8BRH
SuperLibrary MrM8BRH
30
121
mit
8
Information Security Library
isc2 sans books comptia courses hacking infosec mrm8brh bugbounty ec-council kali-linux pentesting superlibrary cybersecurity malware-analysis network-security digital-forensics offensive-security reverse-engineering web-application-security
Created 2020-07-01
30 commits to master branch, last one 6 months ago
DoS0x99
cyber-security-books DoS0x99
17
60
unknown
1
A collection of cyber security books
books forensics cryptography hardware-sec network-security software-security reverse-engineering software-exploitation web-application-security
Created 2023-06-09
1 commits to main branch, last one about a year ago
CyberAlbSecOP
Awesome_CyberSec_Bible CyberAlbSecOP
14
57
unknown
1
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...
hacking privacy security devsecops bug-bounty pentesting ai-security os-security api-security cybersecurity cloud-security cyber-security ethical-hacking malware-analysis incident-response social-engineering penetration-testing threat-intelligence web-application-security
Created 2024-01-11
33 commits to main branch, last one 2 months ago
kljunowsky
CVE-2023-36845 kljunowsky
13
50
mit
2
Juniper Firewalls CVE-2023-36845 - RCE
poc rce hacking juniper security bugbounty juniper-srx bugbountytips cybersecurity cve-2023-36845 bugbountytricks juniper-firewall juniper-networks proof-of-concept bug-bounty-hunting remote-code-execution remote-command-execution web-application-security
Created 2023-09-26
6 commits to main branch, last one 11 months ago
teler-sh
teler-proxy teler-sh
6
45
apache-2.0
5
🔐 teler Proxy enabling seamless integration with teler WAF 🛡️ to protect locally running web service against a web-based attacks. 🥷
waf teler firewall teler-waf teler-proxy proxy-server reverse-proxy tunnel-server secure-by-default intrusion-detection intrusion-prevention web-application-firewall web-application-security
Created 2023-07-06
89 commits to master branch, last one 4 months ago
timokoessler
easy-waf timokoessler
5
39
mit
2
An easy-to-use Web Application Firewall (WAF) for Node.js. Can be used with Express, Fastify, NextJS, NuxtJS ... or plain Node.js http.
waf nodejs security javascript typescript mit-license web-application-firewall web-application-security
Created 2022-07-16
89 commits to main branch, last one 3 months ago
MrPr0fessor
Google-Dorks-for-Cross-site-Scripting-XSS MrPr0fessor
3
33
mit
2
Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML conte...
xss cyber find-xss xss-payload google-dorks xss-payloads cyber-security xss-vulnerability cross-site-scripting ethical-hacking-tools vulnerability-scanners vulnerability-detection web-penetration-testing vulnerability-assessment web-application-security penetration-testing-tools
Created 2023-08-30
2 commits to main branch, last one about a year ago