This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
-
Updated
Feb 10, 2024
#
web-vulnerability
Here are 23 public repositories matching this topic...
Jar Analyzer - 一个 JAR 包分析工具,完善美观的 GUI 支持,方法调用关系搜索,方法调用链 DFS 算法分析,字符串搜索,Java Web 组件入口分析,CFG 程序分析,JVM 栈帧分析,自定义表达式搜索
bytecode static-analysis java-decompiler jar java-bytecode vulnerability program-analysis java-gui java-security web-vulnerability java-debugger java-asm java-vulnerability
-
Updated
Jul 28, 2025 - Java
A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
security deployment actions web-application dynamic-analysis web-vulnerability-scanner vulnerability-detection software-composition-analysis vulnerability-scanning cloud-security deployment-pipeline deployment-automation github-actions web-vulnerability secrets-detection cloud-security-posture-management
-
Updated
Jun 7, 2023
Vulnerable Web application made with PHP/SQL designed to help new web testers gain some experience and test DAST tools for identifying web vulnerabilities. Containing some of the most well-known vulnerabilities such as SQL, cross-site scripting (XSS), OS command injections, our intention to expand more vulnerabilities for learning purposes.
php sql sql-injection xss-vulnerability web-security cyber-security vulnerable-web-app cross-site-scripting web-vulnerability os-command-injection
-
Updated
Dec 15, 2023 - PHP
Google Custom Search Integration: Utilizes Google's Custom Search API to find potentially vulnerable URLs using search dorks. Automated SQL Injection Testing: Automatically checks URLs for common SQL injection vulnerabilities.
hacking sql-injection web-vulnerability-scanner hacking-tool dork websecurity sqlinjection dorking web-vulnerability dorking-tool
-
Updated
May 14, 2025 - Python
Praktek Exploitasi celah keamanan website dengan web DVWA (Damn Vulnerable Web Application)
-
Updated
Nov 20, 2023
🧾 | Cybersecurity and CTF Resource that i gathered over the years
cryptography obfuscation osint reverse-shell exploit reverse-engineering malware hacking cybersecurity penetration-testing anonymous steganography pentesting cheatsheets red-team ctf-tools blue-team web-vulnerability hash-credentials evasion-techniques
-
Updated
Feb 12, 2025
AfterLogic Products Vulnerabilities
-
Updated
Mar 28, 2021
OWASP21-PG is a practical lab that equips enthusiasts, developers & students with skills to identify/prevent web vulnerabilities, particularly in the OWASP Top 10 for 2021. Based on bWAPP, it offers a comprehensive practical lab covering all categories in the OWASP Top 10.
-
Updated
Jan 2, 2024 - PHP
GoBypass403 is a tool designed to help security professionals test and bypass 403 Forbidden errors on web applications. It streamlines the penetration testing process, making it easier to identify vulnerabilities and enhance web security. 🛠️💻
security penetration-testing web-security bugbounty access-control security-scanner http-security http-headers path-traversal web-vulnerability ethical-hacking-tools web-pentesting access-bypass
-
Updated
Jul 18, 2025 - Go
A Challenge for the Discerning Hacker
-
Updated
Jun 12, 2025 - Python
DVWA (Damn Vulnerable Web Application) DVWA is a web application that is intentionally made vulnerable for educational and security testing purposes. It lets users practice and understand different types of web security attacks.
file-upload file hacking xss brute-force dvwa crsf command-injection sql-injection-attacks web-vulnerability
-
Updated
Jul 9, 2024 - PHP
LaraVuln, a simple web application aimed at security test labs and application development. Can be done by many test methods such as black box, white box and gray box, this web can be used for web security.
php security laravel web php7 laravel-framework hacking web-security pentesting vulnerabilities web-hacking web-tools web-vulnerability web-vulnerabilities laravuln
-
Updated
Feb 16, 2025 - PHP
Un petit programme dont le but est de tester la robustesse d'un site contre les attaques de type bruteforce
-
Updated
Jun 23, 2020 - Python
A lightweight, intentionally vulnerable web application for demonstrating SQL injection attacks. Built with Node.js and SQLite for easy setup in seconds no external database required.
-
Updated
May 3, 2025 - JavaScript
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
-
Updated
Feb 18, 2024
The simplest example of a template injection vulnerability
-
Updated
Feb 15, 2021 - Python
Improve this page
Add a description, image, and links to the web-vulnerability topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the web-vulnerability topic, visit your repo's landing page and select "manage topics."