JAW: A Graph-based Security Analysis Framework for JavaScript and Client-side CSRF

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Authentication for Next.js

Solutions and write-ups from security-based competitions also known as Capture The Flag competition

Login from command line to the websites that use CSRF protection

Top disclosed reports from HackerOne

A stylish PHP application framework crafted using Slim, Twig, Eloquent and Sentinel designed to get you from clone to production in a matter of minutes.

nodejs + express security and performance boilerplate.

CSRF Scanner

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

JAVA 漏洞靶场 (Vulnerability Environment For Java)

List of every possible vulnerabilities in computer security.

The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.

A demonstration of stateless JWT authentication with Spring Security, Spring Boot and Vue js

Package csrf is a middleware that generates and validates CSRF tokens for Macaron.

对springSecurity进行二次开发，提供OAuth2授权(支持跨域名，多应用授权)、JWT、SSO、文件上传、权限系统无障碍接入、接口防刷、XSS、CSRF、SQL注入、三方登录(绑定，解绑)、加密通信等一系列安全场景的解决方案

Web & mobile client-side akka-http sessions, with optional JWT support

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

gorilla/csrf provides Cross Site Request Forgery (CSRF) prevention middleware for Go web applications & services 🔒