🏴☠️ Hacking Guides, Demos and Proof-of-Concepts 🥷
A collection of simple vulnerable web apps for testing vulnerability scanners or educational purposes.
MyExpense is a vulnerable web application
LaraVuln, a simple web application aimed at security test labs and application development. Can be done by many test methods such as black box, white box and gray box, this web can be used for web security.
SecuriScan is a Python tool that scans websites for security vulnerabilities, including outdated libraries, exposed admin panels, missing security headers, and advanced threats like CSRF and XSS. It helps detect common vulnerabilities, ensuring your website is secure and protected against attacks.
1st Project for the Security in Organizations class 2021/2022
I used SQL injection to access a website admin panel on DVWA. I attempted a login bypass with SQLMap (which failed), then successfully exploited an SQL injection vulnerability to extract and crack admin password hashes. This repo includes everything to secure web apps against SQL injection attacks. Great for learning web security.
This script is an advanced AI-powered web exploit framework. It utilizes various technologies such as Deep Learning (GPT-4), Machine Learning (AutoML), and conventional attack methods (SQL Injection, XSS, etc.). It's designed to automatically test a target web application for known vulnerabilities and exploits.
#1 Open WordPress vulnerability database tracking 27,000+ issues (plugins, themes, core). Updated On Daily Basis. Formats: SQLite, CSV, Excel.
A browser extension that detects common web vulnerabilities and explains them using AI. Powered by GROQ and backed by a secure Node.js proxy.
The codes in this repository are designed and written in NodeJS. This source code has various vulnerabilities including xss, injections, open redirect and other vulnerabilities. To learn about NodeJS structure and web vulnerabilities in the read world
This article aims to demystify SQL Injection, explaining what it is, how it operates, its purposes in the cybersecurity landscape, and mentioning tools that can be used to conduct such attacks.
This repository contains walkthroughs of PortSwigger labs I have completed
Demonstrates basic website vulnerabilities (XSS, CRSF, SQLi, Command Injection) and their protections using django. Includes a writeup explaining exploits, mitigation and database encryption.
SecuriScan is a Python tool that scans websites for security vulnerabilities, including outdated libraries, exposed admin panels, missing security headers, and advanced threats like CSRF and XSS. It helps detect common vulnerabilities, ensuring your website is secure and protected against attacks.
Add a description, image, and links to the web-vulnerabilities topic page so that developers can more easily learn about it.
To associate your repository with the web-vulnerabilities topic, visit your repo's landing page and select "manage topics."