All About Application Security (AAAS)
Table of Contents
AppSec Study Guide
| Name | Description | Category | Creater |
|---|---|---|---|
| Shieldfy Security Wiki | Intro to various web vulns | StudyGuide | Shieldfy |
Cheatsheet
AppSec
| Name | Description | Category | Creater |
|---|---|---|---|
| OWAPS Cheat Sheet Series | AppSec Cheatsheet | Cheatsheet | |
| Application Security Cheat Sheet | AppSec Cheatsheet | Cheatsheet |
Burp
| Name | Description | Category | Creater |
|---|---|---|---|
| Param Miner Doc | Burp extension Param Miner | Cheatsheet | @nikitastupin |
Application Security Goats
API Goats
| Name | Description | Category | Creater |
|---|---|---|---|
| rest-api-goat | Project to learn about REST API testing | REST API | @stevedor |
| generic-university | Project to learn about REST API testing | REST API | @InsiderPhD |
| VAmPI | API Security testing based on OWAPS Top 10 vulnerabilities for APIs | REST API | @erev0s |
JWT Goats
| Name | Description | Category | Creater |
|---|---|---|---|
| jwt-lab | JWT Vuln Lab | JWT | @h-a-c |
Public Testing Websites
| Name | Description |
|---|---|
| Qualys SSL Labs | Free online SSL/TLS web server scanner |
| Mozilla Observatory | Public web scanner |
Web Recon
Guide/How-To
| Name | Description | Category | Creater |
|---|---|---|---|
| Subdomain Enumeration Guide | A-Z Subdomain Enumeration Guide | Guide/How-To | @sidxparab |
Web Security Assessment Tools
Proxy
| Name | Description | Creater | Guide |
|---|---|---|---|
| Burp Suite | PortSwigger |