52 results found Sort:

chaitin
SafeLine chaitin
807
13.0k
gpl-3.0
71
serve as a reverse proxy to protect your web services from attacks and exploits.
cve waf xss appsec captcha hackers blueteam firewall security bruteforce http-flood api-gateway self-hosted websecurity web-security cybersecurity sql-injection vulnerability application-security web-application-firewall
Created 2023-04-12
822 commits to main branch, last one 6 days ago
qazbnm456
awesome-web-security qazbnm456
1.7k
11.5k
unknown
382
🐶 A curated list of Web Security materials and resources.
web list awesome security websecurity awesome-list penetration-testing
Created 2017-01-29
436 commits to master branch, last one 4 years ago
payloadbox
xss-payload-list payloadbox
1.7k
6.4k
mit
136
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
xss payload xss-poc payloads self-xss bugbounty dom-based websecurity xss-attacks xss-payload xss-scanner xss-payloads xss-scanners xss-detection xss-injection xss-exploitation xss-vulnerability cross-site-scripting website-vulnerability reflected-xss-vulnerabilities
Created 2018-04-23
50 commits to master branch, last one 2 years ago
payloadbox
sql-injection-payload-list payloadbox
1.2k
5.0k
mit
92
🎯 SQL Injection Payload List
hacking payload attacker payloads bugbounty injection sql-inject websecurity owasp-top-10 sql-injection sql-injections injection-attacks security-research injection-payloads sql-injection-proof sql-injection-attack sql-injection-attacks sql-injection-filterer sql-injection-payloads sql-injection-exploitation
Created 2019-10-30
16 commits to master branch, last one 3 years ago
insightglacier
Dictionary-Of-Pentesting insightglacier
355
1.9k
unknown
47
Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
dns rce wifi fuzzing pentest database password payloads bugbounty subdomain bruteforce dictionary pentesting fingerprint spring-boot websecurity iot-security bugbountytips regex-pattern bughunting-methodology
Created 2020-08-26
106 commits to master branch, last one about a year ago
0Chencc
CTFCrackTools 0Chencc
301
1.9k
gpl-3.0
61
China's first CTFTools framework.中国国内首个CTF工具框架,旨在帮助CTFer快速攻克难关
ctf java jython python ctf-tools framework kotlin-java websecurity
Created 2016-08-26
18 commits to master branch, last one 8 months ago
HolyBugx
HolyTips HolyBugx
301
1.8k
gpl-3.0
76
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
api web webapp pentest security writeups bugbounty checklist pentesting websecurity api-security bugbountytips bugbounty-writeups
Created 2021-03-21
46 commits to main branch, last one 3 years ago
zer0yu
CyberSecurityRSS zer0yu
238
1.8k
unknown
81
CyberSecurityRSS: A collection of cybersecurity rss to make you better!
rss redteam security websecurity knowledgebase rss-subscription cyberspace-security
Created 2017-12-05
61 commits to master branch, last one 5 months ago
greenpau
caddy-security greenpau
73
1.5k
apache-2.0
17
🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML...
acl jwt sso auth ldap saml caddy2 oauth2 openid paseto secops security webauthn secdevops websecurity caddy-plugin authorization paseto-tokens access-control authentication
Created 2022-01-15
173 commits to main branch, last one 7 months ago
blst-security
cherrybomb blst-security
82
1.2k
apache-2.0
12
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
api cli blst http cyber openapi openapi3 security firecracker open-source websecurity api-security web-security cybersecurity best-practices business-logic security-tools web-sec-scanner
Created 2021-11-17
520 commits to main branch, last one 27 days ago
payloadbox
xxe-injection-payload-list payloadbox
301
1.1k
mit
23
🎯 XML External Entity (XXE) Injection Payload List
xml xxe hacking infosec payload payloads bugbounty bug-bounty xml-entity websecurity xxe-example xxe-payload xxe-payloads cybersecurity xxe-injection cyber-security xxe-payload-list information-security websecurity-reference web-application-security
Created 2019-11-19
15 commits to master branch, last one about a year ago
rhaidiz
broxy rhaidiz
58
1.0k
gpl-3.0
18
An HTTP/HTTPS intercept proxy written in Go.
go wapt broxy proxy golang hacking qt5-gui security http-proxy qt-wrapper interceptor websecurity http-security http-interceptor penetration-testing penetration-testing-tools
Created 2020-01-08
144 commits to master branch, last one 2 years ago
Proviesec
google-dorks Proviesec
184
986
unknown
18
Useful Google Dorks for WebSecurity and Bug Bounty
google security bugbounty websecurity cybersecurity
Created 2021-12-21
348 commits to main branch, last one 7 months ago
yeswehack
vulnerable-code-snippets yeswehack
143
942
unknown
27
Twitter vulnerable snippets
code owasp snippets bugbounty vulnerable websecurity code-analyze example-code web-application worst-practices
Created 2022-11-03
402 commits to main branch, last one 20 days ago
backdoorhub
shell-backdoor-list backdoorhub
554
722
mit
33
🎯 PHP / ASP - Shell Backdoor List 🎯
c99 php r57 web wso hack b374k kacak shell asp-net hacking backdoor web-shell hackingcode web-hacking websecurity asp-backdoor php-backdoor web-security shell-backdoor
Created 2018-05-30
37 commits to master branch, last one 4 years ago
glebarez
cero glebarez
81
620
mit
9
Scrape domain names from SSL certificates of arbitrary hosts
ssl tls recon scrape websecurity domain-names
Created 2020-04-26
40 commits to master branch, last one about a year ago
payloadbox
ssti-payloads payloadbox
130
602
mit
10
🎯 Server Side Template Injection Payloads
web code ssti bounty source payload payloads security bugbounty injection payloadbox websecurity bugbountytips code-security security-audit source-code-analysis server-side-template-injection
Created 2020-06-27
20 commits to master branch, last one about a year ago
payloadbox
rfi-lfi-payload-list payloadbox
184
538
mit
18
🎯 RFI/LFI Payload List
lfi rfi appsec payload payloads security bugbounty bug-bounty web-hacking websecurity payload-list rfi-exploiton lfi-exploitation lfi-vulnerability security-research rfi-vulnerabillity security-researcher application-security security-researchers web-application-security
Created 2019-11-04
13 commits to master branch, last one 3 years ago
payloadbox
open-redirect-payload-list payloadbox
187
533
mit
18
🎯 Open Redirect Payload List
payload payloads security websecurity openredirect payload-list open-redirect
Created 2019-08-15
6 commits to master branch, last one 4 years ago
flipkart-incubator
RTA flipkart-incubator
118
410
unknown
37
Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.
nessus python security websecurity security-tools
Created 2018-04-09
28 commits to master branch, last one about a year ago
WangYihang
SourceLeakHacker WangYihang
109
381
unknown
17
:bug: A multi threads web application source leak scanner
scanner webscanner websecurity hacking-tool
Created 2017-03-23
106 commits to master branch, last one 4 months ago
sqlsec
ssrf-vuls sqlsec
59
366
unknown
4
国光的手把手带你用 SSRF 打穿内网靶场源码
ssrf vulhub websecurity
Created 2021-05-09
6 commits to main branch, last one 3 years ago
Mehdi0x90
Web_Hacking Mehdi0x90
54
320
unknown
6
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
owasp recon bypass exploit hacking pentest redteam payloads security bugbounty cheatsheet webhacking api-pentest enumeration websecurity api-security vulnerability bug-bounty-hunters penetration-testing web-application-security
Created 2023-08-18
259 commits to main branch, last one 2 days ago
Fly-Playgroud
Boom Fly-Playgroud
18
304
other
5
Boom 是一款基于无头浏览器的智能 Web 弱口令(后台密码)爆破\检测工具
go-rod golang passwrod websecurity password-cracking-tool
Created 2023-06-15
12 commits to main branch, last one 6 months ago
MindPatch
lorsrf MindPatch
43
289
gpl-3.0
4
Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load :artificial_satellite: :crab:
rust ssrf fuzzing hacking blindssrf bugbounty bruteforce pentesting websecurity penetration-testing
Created 2020-06-16
95 commits to master branch, last one about a month ago
DontPanicO
jwtXploiter DontPanicO
33
271
gpl-3.0
7
A tool to test security of json web token
ctf jku jwt jwks pentest security ctf-tools pentesting jwt-cracker jwt-exploit websecurity jsonwebtoken jwt-security pentest-tool x5u-injection security-tools pentesting-tools penetration-testing penetration-testing-tools
Created 2020-11-15
238 commits to main branch, last one 3 years ago
VainlyStrain
Vailyn VainlyStrain
25
198
gpl-3.0
6
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
lfi rce websec security takeover lfi-shells pentesting websecurity exploitation pentest-tool filter-evasion path-traversal information-leak lfi-exploitation directory-traversal penetration-testing local-file-inclusion vulnerability-scanners vulnerability-detection vulnerability-assessment
Created 2020-04-19
410 commits to master branch, last one 3 years ago
payloadbox
csv-injection-payloads payloadbox
77
195
mit
7
🎯 CSV Injection Payloads
csv websec payload payloads security bugbounty bug-bounty payloadbox csv-exploit csv-payload websecurity csv-payloads bugbountytips code-security csv-injection
Created 2020-06-27
8 commits to master branch, last one about a year ago
payloadbox
directory-payload-list payloadbox
71
151
mit
6
🎯 Directory Payload List
fuzz websec awesome fuzzing payload payloads bugbounty directory bug-bounty payloadbox web-secure websecurity awesome-list fuzz-testing payload-list web-security directory-list directory-payload web-security-research websecurity-reference
Created 2020-02-24
13 commits to master branch, last one 4 years ago
bhavesh-pardhi
Wordlist-Hub bhavesh-pardhi
20
143
mit
2
Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utilized by bug hunters, penetration testers, and security enthusiast...
security wordlist brute-force bug-hunting websecurity allwordlists cybersecurity ethical-hacking bugbounty-wordlist webapplicationhacking webapplicationsecurity
Created 2023-08-22
9 commits to main branch, last one 6 months ago