Awesome Open Source

Programming Languages

Search results for vulnerabilities owasp

vulnerabilities x

62 search results found

Awesome Web Hacking ⭐ 5,260

A list of web application security

Retire.js ⭐ 3,448

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

Awesome Hacking ⭐ 2,716

Awesome hacking is an awesome collection of hacking tools.

Awesome Nodejs Security ⭐ 2,515

Awesome Node.js Security resources

Dependency Track ⭐ 2,119

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Coreruleset ⭐ 1,836

OWASP ModSecurity Core Rule Set (Official Repository)

Awesome Golang Security ⭐ 1,768

Awesome Golang Security resources 🕶🔐

Bearer ⭐ 1,554

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Blackwidow ⭐ 1,448

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Mutillidae ⭐ 1,113

OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.

Vulstudy ⭐ 876

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。

Railsgoat ⭐ 827

A vulnerable version of Rails that follows the OWASP Top 10

Security Code Scan ⭐ 801

Vulnerability Patterns Detector for C# and VB.NET

Awesome Vulnerable ⭐ 789

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

Betterscan Ce ⭐ 673

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing

Damn Vulnerable NodeJS Application

Oscp Prep ⭐ 619

A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam

Esapi Java Legacy ⭐ 578

ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library that makes it easier for programmers to write lower-risk applications.

Dependency Check Sonar Plugin ⭐ 532

Integrates Dependency-Check reports into SonarQube

Awesome Dotnet Security ⭐ 430

Awesome .NET Security Resources

Owasp Xenotix Xss Exploit Framework ⭐ 393

OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Igoat Swift ⭐ 315

OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS

Awesome Java Security ⭐ 291

Awesome Java Security Resources 🕶☕🔐

Generic University ⭐ 285

OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.

Sbt Dependency Check ⭐ 259

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Awesome Cyber Security ⭐ 255

[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.

Vulnerableapp ⭐ 236

OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.

Iotgoat ⭐ 219

IoTGoat is a deliberately insecure firmware created to educate software developers and security professionals with testing commonly found vulnerabilities in IoT devices.

Vuln Web Apps ⭐ 209

A curated list of vulnerable web applications.

Handbook ⭐ 196

A living document for penetration testing and offensive security.

Phpvuln ⭐ 185

🕸️ Audit tool to find common vulnerabilities in PHP source code

Nightingale ⭐ 183

It's a Docker Environment for Pentesting which having all the required tool for VAPT.

ADAPT is a tool that performs automated Penetration Testing for WebApps.

Awesome Pentest ⭐ 156

Awesome Penetration Testing A collection of awesome penetration testing resources

Vulnerable Soap Service ⭐ 138

Erlik - Vulnerable Soap Service

Web_hacking ⭐ 135

Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.

Cazador_unr ⭐ 130

Owasp Orizon ⭐ 127

Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.

Dependency Check Plugin ⭐ 124

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

Vulnplanet ⭐ 123

Vulnerable code snippets with fixes for Web2, Web3, API, iOS, Android and Infrastructure-as-Code (IaC)

Securityessentials ⭐ 122

Raise your baseline in security by using this as your template instead of default Mvc project. Keep your app secure by continuously applying Security rules

Vulnerable Flask App ⭐ 121

Erlik 2 - Vulnerable-Flask-App

Cve 2022 23808 ⭐ 110

List Of Web Application Security ⭐ 107

List of web application security

Nugetdefense ⭐ 91

An MSBuildTask that checks for known vulnerabilities. Inspired by OWASP SafeNuGet.

Terraform Aws Waf Owasp ⭐ 84

AWS WAF at terraform modules to mitigate OWASP’s Top 10 Web Application Vulnerabilities

Deeptracy ⭐ 84

The Security Dependency Orchestrator Service

Djangoat ⭐ 62

Python and Django implementation of the OWASP RailsGoat project

Vulnerable Python Application To Learn Secure Development

Securebank ⭐ 46

Zap Scripts ⭐ 45

Zed Attack Proxy Scripts for finding CVEs and Secrets.

Test your Security Skills, and Clean Code Development as a Pythonist, Hacker & Warrior 🥷🏻

Cwe Tool ⭐ 42

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

Owasp Jenkins ⭐ 38

Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ansible and docker? 🐳 🛡️ 🔒

Dependency Check Py ⭐ 37

🔐 Shim to easily install OWASP dependency-check-cli into Python projects

Android Vulnerabilities ⭐ 36

Covers Top 10 OWASP Mobile Vulnerabilities

Onesie Life ⭐ 34

🔓 Onesie.life is a fictional social media network that has intentional vulnerabilities

Kubernetes Ingress controller with integrated Wallarm services

OWASP Skanda - SSRF Exploitation Framework

Cwe Sdk Javascript ⭐ 28

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

Owasp Zap Jwt Addon ⭐ 27

OWASP ZAP addon for finding vulnerabilities in JWT Implementations

Fsecurity ⭐ 23

Security testing library written in F# to make writing security tests more fun.

Webgoat.net ⭐ 22

WebGoat.NETCore - port of original WebGoat.NET to .NET Core

Presentations ⭐ 16

My presentations from different conferences

bWAPP latest modified for PHP7

Secure-D Web Application Security Test Checklist summarizes well-known weaknesses, vulnerabilities and best practices into review topics with short description and recommendation. Its objective is to aid penetration tester to review the web application thoroughly.

Penetration_testing_resources ⭐ 12

This repo contains resources to help learn and understand penetration testing

Webgoat.mvc ⭐ 12

OWASP Top 10 Implemented in ASP.NET MVC

Awesome Security Vul Llm ⭐ 11

本项目通过大模型联动爬虫，检索Github上所有存有有价值漏洞信息与漏洞POC或规则信息的项目，并自

Quick Start Guide ⭐ 9

Repo for the OWASP Quick Start Guide

Every Hacker's Go to Fuzzing List. Introducing the Ultimate Fuzzing Directory: Your Go-To Resource for Penetration Testers and Bug Bounty Hunters! Unlock the power of comprehensive fuzzing with our meticulously curated Fuzzing Directory, a one-stop solution designed to streamline your penetration testing and bug bounty hunting endeavors.

A vulnerable application for teaching the basics of web application security

Owasp Threat Dragon Core ⭐ 9

OWASP Threat Dragon core files

Vulnwebcollection ⭐ 9

Web attack vectors collection

OWASP WAP - Web Application Protection Project

Free Online Tools

Node Shield ⭐ 8

Protects against common Node.js vulnerabilities in MEAN stack (MongoDB, Node.js).

Boilerplate Templates ⭐ 7

Provides boilerplate vulnerability explanations and templates which can easily be used in real-world reports

Xss Scanner ⭐ 7

Following OWASP TOP 10 (the top ten most critical web application security risk) I decided to build an XSS Scanner.

Broken Web Application ⭐ 7

An intentionally vulnerable Web-Application based on OWASP 2013 Top 10 List.

Owasp Riskrating ⭐ 6

OWASP Risk Rating Management Project

Owasp Top10 Salesforce ⭐ 6

Examples of OWASP Top 10 vulnerabilities in Salesforce

Juiceshop_xss_example ⭐ 6

An example heroku server implementation for exploiting an XSS in the OWASP Juice Shop

Odc Analyzer ⭐ 6

OWASP Dependency Check reports analyzer

Dotnetsafer CLI is a console tool that allows you to protect your .NET developments, integrates different products and services to keep your code safe.

Kick Off Owasp_webapp_security_vulnerabilities ⭐ 5

Want to keep your Web application from getting hacked? Here's how to get serious about secure apps. So let's do it! Open Friday, Aug 2016 - Presentation Notes.

Code Crawler ⭐ 5

Automatic tool using for crawling code to find low-hang fruit vulnerabilities - Based on OWASP Secure Code Review Guide

Owasp Webgoat Dot Net Docker ⭐ 5

Docker container for running OWASP WebGoat.NET application

Js Lib Sniper ⭐ 5

OWTF's JavaScript Library Sniper: A standalone tool for figuring out vulnerabilities from JavaScript files, OWTF integration is minimal and mostly done from the OWTF repo.

Developer Security Training ⭐ 5

All Labs of the Security for Developers Training

Awesomehacking ⭐ 5

Related Searches

Security Vulnerabilities (12,350)

Laravel Vulnerabilities (11,319)

Php Vulnerabilities (8,887)

Html Vulnerabilities (1,812)

Javascript Vulnerabilities (1,306)

Python Vulnerabilities (1,159)

Vulnerabilities Scanner (695)

Vulnerabilities Exploitation (636)

Security Owasp (392)

1-62 of 62 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.