web-vulnerability
There are 24 repositories under web-vulnerability topic.
Az0x7/vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
jar-analyzer/jar-analyzer
Jar Analyzer - 一个 JAR 包 GUI 分析工具,方法调用关系搜索,方法调用链 DFS 算法分析,模拟 JVM 的污点分析验证 DFS 结果,字符串搜索,Java Web 组件入口分析,CFG 程序分析,JVM 栈帧分析,自定义表达式搜索。官方文档:https://docs.qq.com/doc/DV3pKbG9GS0pJS0tk
SecureStackCo/actions-exposure
A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
OSTEsayed/OSTE-Vulnerable-Web-Application
Vulnerable Web application made with PHP/SQL designed to help new web testers gain some experience and test DAST tools for identifying web vulnerabilities. Containing some of the most well-known vulnerabilities such as SQL, cross-site scripting (XSS), OS command injections, our intention to expand more vulnerabilities for learning purposes.
xfnx-17/DorkHunter
Google Custom Search Integration: Utilizes Google's Custom Search API to find potentially vulnerable URLs using search dorks. Automated SQL Injection Testing: Automatically checks URLs for common SQL injection vulnerabilities.
rahardian-dwi-saputra/dvwa-tricks
Praktek Exploitasi celah keamanan website dengan web DVWA (Damn Vulnerable Web Application)
Hrishikesh7665/OWASP21-PG
OWASP21-PG is a practical lab that equips enthusiasts, developers & students with skills to identify/prevent web vulnerabilities, particularly in the OWASP Top 10 for 2021. Based on bWAPP, it offers a comprehensive practical lab covering all categories in the OWASP Top 10.
Ro3otz/Sqlgod
Sql Injection God
zebbern/CTF-Resources
🧾 | Cybersecurity and CTF Resource that i gathered over the years
0x-Professor/Tic-Tac-Toe
A Challenge for the Discerning Hacker
E3SEC/AfterLogic
AfterLogic Products Vulnerabilities
Kasim200429/GoBypass403
GoBypass403 is a tool designed to help security professionals test and bypass 403 Forbidden errors on web applications. It streamlines the penetration testing process, making it easier to identify vulnerabilities and enhance web security. 🛠️💻
Jieyab89/LaraVuln
LaraVuln, a simple web application aimed at security test labs and application development. Can be done by many test methods such as black box, white box and gray box, this web can be used for web security.
TearsAchly/DVWA
DVWA (Damn Vulnerable Web Application) DVWA is a web application that is intentionally made vulnerable for educational and security testing purposes. It lets users practice and understand different types of web security attacks.
ADIRTTA/Adiweb
My web details finder tool
space-maker/idiot-crack
Un petit programme dont le but est de tester la robustesse d'un site contre les attaques de type bruteforce
asarandi/darkly
this project is an introduction to web application security
ChiefInformationSecurityOfficer/vulnerability-Checklist.dev
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
mehdi-zerouak/DWSecurity-SQLi-Lab
A lightweight, intentionally vulnerable web application for demonstrating SQL injection attacks. Built with Node.js and SQLite for easy setup in seconds no external database required.
QQKdeGit/landray-poc
蓝凌 V15 系统的 Web 漏洞 POC 大全
rahardian-dwi-saputra/webgoat
Praktek eksploitasi celah keamanan OWASP top 10 dengan WebGoat
whippinmywrist/Flask-template-injection
The simplest example of a template injection vulnerability
JayRyz/CVE-2023-38646-PoC-Metabase
Proof-of-Concept script for exploiting CVE-2023-38646. Intended for educational and research purposes only.
rishiraajrs/SQL-injection-Scanner
SQL-Injection-Scanner is a powerful, lightweight Python tool for detecting SQL injection vulnerabilities in web apps. It supports GET/POST methods, custom payloads, and proxy integration. Perfect for ethical hackers, bug bounty hunters, and developers to quickly identify and report injection flaws with accuracy, speed, and minimal setup.