SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Damn Vulnerable Web Application (DVWA)

This is a webshell open source project

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

SQLI labs to test error based, Blind boolean based, Time based.

Collection of CTF Web challenges I made

Detect potentially malicious PHP files

A tool that can scan php vulnerabilities automatically using static analysis methods

Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities. NOTE: This project is o…

PHP Frontend to work with the SQLMAP JSON API Server (sqlmapapi.py) to allow for a Web GUI to drive near full functionality of SQLMAP!

Falcon是一款基于inotify-tools 开发的Web服务器文件监控平台 能够实时监控Web目录文件变化(新增，修改，删除)，判断文件内容是否包含恶意代码，自动隔离常见Webshell，保证Web目录文件安全

Web Input Vector Extractor Teaser

domain for website

A mass exploiting script to read all users files and shell access