-
VulnBank-Admin-Dashboard Public
Breaking Into the VulnBank Admin Dashboard: A Lesson in Broken Access Control
UpdatedDec 18, 2025 -
Ananse-Hive-Eco-Store Public
Forked from BishopOdedeyi/anase-secure-labThis is a Vulnerable E-commerce website that can be used to practice web hacking and Penetration testing @HIVE CONSULT
-
vuln-bank Public
Forked from Commando-X/vuln-bankA deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure code reviews. Features common vulnerabilities found in real-wor…
Python MIT License UpdatedDec 12, 2025 -
-
react2shell-scanner Public
Forked from assetnote/react2shell-scannerHigh Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)
Python UpdatedDec 7, 2025 -
-
-
Vuln-Store Public
This is a Vulnerable E-commerce website that can be used to practice web hacking and Penetration testing
-
-
JWT-Weak-Signature-Checker Public
JWT Weak Signature Checker / Decoder A lightweight Python offensive-security utility for inspecting JSON Web Tokens (JWTs), detecting signature-related misconfigurations, and brute-forcing weak HMA…
-
PentestingEverything Public
Forked from m14r41/PentestingEverythingPenetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...
MIT License UpdatedNov 16, 2025 -
security-header-checker Public
A lightweight Python tool for quick AppSec checks. It scans a target URL for essential HTTP security headers like CSP, HSTS, and X-Frame-Options, helping identify missing protections and weak confi…
Python UpdatedNov 14, 2025 -
ThreatAnalysisProject Public
This project demonstrates a complete Threat Modeling workflow for a web application, utilizing Data Flow Diagramming (DFD) to visualize system components, data stores, processes, and external entit…
UpdatedNov 13, 2025 -
-
-
First-Bounty Public
Forked from BehiSecc/First-BountyA complete, beginner-friendly bug bounty roadmap that takes you from zero experience to earning your first bounty.
1 UpdatedSep 5, 2025 -
-
-
NetworkPortScanning Public
PortScan Recon is a lightweight, open-source reconnaissance toolkit and knowledgebase focused on network port scanning. It helps ethical hackers and penetration testers identify open services, extr…
1 UpdatedJul 10, 2025 -
Bug-Bounty-Hunting-Methodology-2025 Public
Forked from amrelsagaei/Bug-Bounty-Hunting-Methodology-2025Bug Bounty Methodology 2025: Tools, techniques, and steps to guide you through reconnaissance, enumeration, and testing.
-
-
xsshunter-express Public
Forked from mandatoryprogrammer/xsshunter-expressAn easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
JavaScript MIT License UpdatedMar 7, 2024 -
31-days-of-API-Security-Tips Public
Forked from inonshk/31-days-of-API-Security-TipsThis challenge is Inon Shkedy's 31 days API Security Tips.
UpdatedApr 20, 2022 -
Hacking-related-books Public
Forked from psyll0n/Hacking-related-booksE-books related to hacking helps you to know more about hacking
{{ message }}