Web Application Secure Coding Handbook resource.
Make URL path combinations using a wordlist
one-stop resource for all things offensive security.
OWASP Code Review Guide Web Repository
A tech enumeration toolkit focused on 404 Not found pages.
ScriptKKiddie's WebAppSec Testing or Web Application Security Testing based on OWASP is a repository that contains useful resources, & stuffs helpful for Web Application Penetration Testing. By @Scrip...
Changes the output of Wappalyzer into something human readable. It also provides links to useful websites and a Google query for finding information on vulnerabilities.
A curated list of tools which you can use in Infosec!
Automation scripts for PortSwigger labs
A collection of security notes and procedures to use during pentests/red team assessments or as preparation for OSCP and similar exams
Command line utility to hunt for Virtual Hosts
Wishload is a powerful tool that allows you to craft and manipulate polyglot payloads. With a variety of encoding and escape options
#前端开发#An all-in-one frontend security tool for downloading, beautifying, and scanning for secrets.
web application penetration testing and security notes.
A Rust-Based Web Application Security Tester
AS Security - Develop and Secure
Go Web Auth Checker (gowac) can be used to discover URLs that have access control issues