web-vulnerability

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

Jar Analyzer - 一个 JAR 包分析工具，完善美观的 GUI 支持，方法调用关系搜索，方法调用链 DFS 算法分析，字符串搜索，Java Web 组件入口分析，CFG 程序分析，JVM 栈帧分析，自定义表达式搜索。官方文档：https://docs.qq.com/doc/DV3pKbG9GS0pJS0tk

A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.

Vulnerable Web application made with PHP/SQL designed to help new web testers gain some experience and test DAST tools for identifying web vulnerabilities. Containing some of the most well-known vulnerabilities such as SQL, cross-site scripting (XSS), OS command injections, our intention to expand more vulnerabilities for learning purposes.

Google Custom Search Integration: Utilizes Google's Custom Search API to find potentially vulnerable URLs using search dorks. Automated SQL Injection Testing: Automatically checks URLs for common SQL injection vulnerabilities.

Praktek Exploitasi celah keamanan website dengan web DVWA (Damn Vulnerable Web Application)

🧾 | Cybersecurity and CTF Resource that i gathered over the years

Sql Injection God

OWASP21-PG is a practical lab that equips enthusiasts, developers & students with skills to identify/prevent web vulnerabilities, particularly in the OWASP Top 10 for 2021. Based on bWAPP, it offers a comprehensive practical lab covering all categories in the OWASP Top 10.

GoBypass403 is a tool designed to help security professionals test and bypass 403 Forbidden errors on web applications. It streamlines the penetration testing process, making it easier to identify vulnerabilities and enhance web security. 🛠️💻

AfterLogic Products Vulnerabilities

LaraVuln, a simple web application aimed at security test labs and application development. Can be done by many test methods such as black box, white box and gray box, this web can be used for web security.

A Challenge for the Discerning Hacker

DVWA (Damn Vulnerable Web Application) DVWA is a web application that is intentionally made vulnerable for educational and security testing purposes. It lets users practice and understand different types of web security attacks.

Un petit programme dont le but est de tester la robustesse d'un site contre les attaques de type bruteforce

My web details finder tool

this project is an introduction to web application security

The simplest example of a template injection vulnerability

A lightweight, intentionally vulnerable web application for demonstrating SQL injection attacks. Built with Node.js and SQLite for easy setup in seconds no external database required.

Praktek eksploitasi celah keamanan OWASP top 10 dengan WebGoat