html-sanitizerHTML sanitizer, written in PHP, aiming to provide XSS-safe markup based on explicitly allowed tags, attributes and values.
Stars: ✭ 18 (-99.16%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (-58.45%)
Express Securitynodejs + express security and performance boilerplate.
Stars: ✭ 37 (-98.27%)
PhpvulnAudit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (-93.16%)
Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: ✭ 10,212 (+378.31%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (-94.66%)
Blocker DatabaseA global domain based database for NoScript, uBlock, uMatrix & ScriptSafe
Stars: ✭ 127 (-94.05%)
Parsevip解析VIP资源,解析出酷狗、QQ音乐、腾讯视频、人人视频的真实地址
Stars: ✭ 105 (-95.08%)
AsvsA simple web app that helps developers understand the ASVS requirements.
Stars: ✭ 80 (-96.25%)
SecurityratOWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
Stars: ✭ 115 (-94.61%)
Hacker ezinesA collection of electronic hacker magazines carefully curated over the years from multiple sources
Stars: ✭ 72 (-96.63%)
HookishHooks in to interesting functions and helps reverse the web app faster.
Stars: ✭ 129 (-93.96%)
Owasp SeraphimdroidOWASP Seraphimdroid is an open source project with aim to create, as a community, an open platform for education and protection of Android users against privacy and security threats.
Stars: ✭ 62 (-97.1%)
Pwning Juice ShopGitBook markdown content for the eBook "Pwning OWASP Juice Shop"
Stars: ✭ 110 (-94.85%)
BreachdetectorDetect root, emulation, debug mode and other security concerns in your Xamarin apps
Stars: ✭ 57 (-97.33%)
AmassIn-depth Attack Surface Mapping and Asset Discovery
Stars: ✭ 1,693 (-20.7%)
XwafxWAF 3.0 - Free Web Application Firewall, Open-Source.
Stars: ✭ 48 (-97.75%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (-35.04%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (-54.38%)
Koa IpIp filter middleware for koa, support whitelist and blacklist.
Stars: ✭ 37 (-98.27%)
Awesome Hacking ResourcesA collection of hacking / penetration testing resources to make you better!
Stars: ✭ 11,466 (+437.05%)
Zebra formA jQuery augmented PHP library for creating secure HTML forms, and validating them easily
Stars: ✭ 95 (-95.55%)
Tiny Xss PayloadsA collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
Stars: ✭ 975 (-54.33%)
Python Xss FilterBased on native Python module HTMLParser purifier of HTML, To Clear all javascript in html
Stars: ✭ 115 (-94.61%)
ThemisEasy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
Stars: ✭ 1,232 (-42.3%)
Owasp OrizonOwasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
Stars: ✭ 130 (-93.91%)
Anchore EngineA service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Stars: ✭ 1,192 (-44.17%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (-94.61%)
SqlinatorAutomatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
Stars: ✭ 70 (-96.72%)
Owaspheaders.coreA .NET Core middleware for injecting the Owasp recommended HTTP Headers for increased security
Stars: ✭ 138 (-93.54%)
ZaproxyThe OWASP ZAP core project
Stars: ✭ 9,078 (+325.2%)
Whitelistwhitelist.dock.io backend service
Stars: ✭ 111 (-94.8%)
Unattended upgrades reposGenerates system-specific repositories to be added in configuration file for silently updating all packages via unattended upgrades.
Stars: ✭ 62 (-97.1%)
Django DefectdojoDefectDojo is an open-source application vulnerability correlation and security orchestration tool.
Stars: ✭ 1,926 (-9.79%)
Ubo YoutubeEasier way to exempt your favorite YouTube channels from adblocking.
Stars: ✭ 57 (-97.33%)
OwtfOffensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
Stars: ✭ 1,516 (-28.99%)
Threat DragonAn open source, online threat modelling tool from OWASP
Stars: ✭ 57 (-97.33%)
Owasp Cloud SecurityOWASP Cloud Security - Enabling conversations through threat and control stories
Stars: ✭ 148 (-93.07%)
Pythempentest framework
Stars: ✭ 1,060 (-50.35%)
XsscopeXSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
Stars: ✭ 103 (-95.18%)
EzxssezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Stars: ✭ 1,022 (-52.13%)
Find Sec BugsThe SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Stars: ✭ 1,748 (-18.13%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (-36.11%)
NettackerAutomated Penetration Testing Framework
Stars: ✭ 982 (-54%)
Go AgentSqreen's Application Security Management for the Go language
Stars: ✭ 134 (-93.72%)
FilterbypassBrowser's XSS Filter Bypass Cheat Sheet
Stars: ✭ 884 (-58.59%)
XsstrikeMost advanced XSS scanner.
Stars: ✭ 9,822 (+360.05%)
DompurifyDOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
Stars: ✭ 8,177 (+283%)
V3n0m ScannerPopular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (-60.33%)
0l4bsCross-site scripting labs for web application security enthusiasts
Stars: ✭ 119 (-94.43%)
HtmlsanitizerCleans HTML to avoid XSS attacks
Stars: ✭ 938 (-56.07%)
AstraAutomated Security Testing For REST API's
Stars: ✭ 1,898 (-11.1%)
XssmapXSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
Stars: ✭ 134 (-93.72%)
QuickxssAutomating XSS using Bash
Stars: ✭ 113 (-94.71%)