Projects in Awesome Lists tagged with websec
A curated list of projects in awesome lists tagged with websec .
https://github.com/nekmo/dirhunt
Find web directories without bruteforce
crawler dirscanner pentesting python security security-tools websec without-bruteforce
Last synced: 14 May 2025
https://github.com/Nekmo/dirhunt
Find web directories without bruteforce
crawler dirscanner pentesting python security security-tools websec without-bruteforce
Last synced: 28 Mar 2025
https://github.com/devploit/nomore403
🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.
403 403-bypass bugbounty bypass ctf go http pentest pentesting reconnaissance security tool waf-bypass websec
Last synced: 10 May 2025
https://github.com/deibit/cansina
Web Content Discovery Tool
pentesting python security-audit websec
Last synced: 02 Apr 2025
https://github.com/security-prince/Application-Security-Engineer-Interview-Questions
Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
application-security appsec devsecops infosec interview-questions sdlc security-engineer-interview security-engineering security-team vulnerability webappsec websec websecurity websecurity-reference xss
Last synced: 17 Apr 2025
https://github.com/l4wio/ctf-challenges-by-me
Pwnable|Web Security|Cryptography CTF-style challenges
cryptography ctf ctf-challenges ctf-writeups pwnable websec
Last synced: 02 Apr 2025
https://github.com/root4loot/rescope
A scope generation tool for Burp Suite & ZAP
bugbounty burp burpsuite enumeration go golang infosec pentesting scope security security-tools websec zap
Last synced: 07 Apr 2025
https://github.com/devploit/XORpass
Encoder to bypass WAF filters using XOR operations.
bugbounty pentesting php waf-bypass websec xor
Last synced: 30 Apr 2025
https://github.com/payloadbox/csv-injection-payloads
🎯 CSV Injection Payloads
bug-bounty bugbounty bugbountytips code-security csv csv-exploit csv-injection csv-payload csv-payloads payload payloadbox payloads security websec websecurity
Last synced: 05 Mar 2025
https://github.com/VainlyStrain/Vailyn
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
directory-traversal exploitation filter-evasion information-leak lfi lfi-exploitation lfi-shells local-file-inclusion path-traversal penetration-testing pentest-tool pentesting rce security takeover vulnerability-assessment vulnerability-detection vulnerability-scanners websec websecurity
Last synced: 11 Jul 2025
https://github.com/security-prince/Resources-for-Application-Security
Some good resources for getting started with application security
application-security appsec appsec-tutorials ctf infosec infosec-reference owasp php-security security-engineering web-hacking websec websecurity websecurity-reference
Last synced: 28 Aug 2025
https://github.com/security-prince/resources-for-application-security
Some good resources for getting started with application security
application-security appsec appsec-tutorials ctf infosec infosec-reference owasp php-security security-engineering web-hacking websec websecurity websecurity-reference
Last synced: 13 May 2025
https://github.com/tyki6/MyJWT
A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
blackarch blackarch-packages cli ctf jsonwebtoken jwt pentest pentesting pypi python rawsec root-me rootme security security-tools websec
Last synced: 12 Jul 2025
https://github.com/devploit/put2win
Script to automate PUT HTTP method exploitation to get shell
Last synced: 30 Apr 2025
https://github.com/doyensec/csptplayground
CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
appsec-testing cspt csrf websec websecurity
Last synced: 14 Jun 2025
https://github.com/veliovgroup/ostrio
â–² Web services for modern and legacy websites, web apps, e-commerce shops, social and corporate portals, and IoT devices. Made for top-notch experience with monitoring, security, web analytics, SEO, and DevOps in the cloud, virtual, and bare-metal environments
analytics crawlable down-detector gdpr monitoring prerender prerendering privacy-policy seo sms-notifications snmp spiderable web-analytics web-cron webcron websec websecurity
Last synced: 30 Jul 2025
https://github.com/rahulrajpl/netizenship
a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.
cybersecurity information-gathering information-retrieval information-security infosec osint-python websec websecurity
Last synced: 05 May 2025
https://github.com/itsignacioportal/hacker-scoper
Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.
bugbounty bugcrowd enumeration filter go golang hackerone infosec pentesting recon scopes security security-tools websec websecurity
Last synced: 03 Sep 2025
https://github.com/umair9747/4ofour
A tech enumeration toolkit focused on 404 Not found pages.
bounty bug-bounty bugbounty cybersecurity cybersecurity-tools ethical-hacking infosec linux osint penetration-testing pentesting recon reconnaissance webappsecurity websec websecurity
Last synced: 10 Oct 2025
https://github.com/umair9747/4oFour
A tech enumeration toolkit focused on 404 Not found pages.
bounty bug-bounty bugbounty cybersecurity cybersecurity-tools ethical-hacking infosec linux osint penetration-testing pentesting recon reconnaissance webappsecurity websec websecurity
Last synced: 30 Oct 2025
https://github.com/ItsIgnacioPortal/hacker-scoper
Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.
bugbounty bugcrowd enumeration filter go golang hackerone infosec pentesting recon scopes security security-tools websec websecurity
Last synced: 11 Jul 2025
https://github.com/crypto-cat/ctf-writeups
Repository for my GitBook (CTF writeups)
appsec binary-exploitation capture-the-flag ctf ctftime cybersecurity gitbook hacking infosec offsec pwn websec writeups
Last synced: 24 Jun 2025
https://github.com/foospidy/sigsci-power-rules
Rule packs for Signal Sciences power rules platform.
appsec powerrules rules signal-sciences signal-sciences-api signalsciences sigsci websec websecurity
Last synced: 12 Apr 2025
https://github.com/vin-hacks/claraclassroom
The Clara S. Traversal's classroom is an intermediate level web security challenge (black box) where you will have to exploit both client-side and server-side vulnerability in order to change a student gard. Can you hack the class and get in? Access teacher only features? Do even more than the teacher can? Good luck!
ctf cybersecurity hacking javascript python vulnerability web webhacking websec
Last synced: 17 Mar 2025
https://github.com/darkpurple141/xss-test
A utility to test the success of xss payloads on a target website. Use responsibly.
penetration-testing pentesting python3 security tools websec xss xss-exploitation
Last synced: 08 Sep 2025
https://github.com/dkasak/relative-urls
Extract endpoints from stdin or files.
bug-bounty bug-hunting endpoint extraction pentesting python security url websec
Last synced: 26 Mar 2025
https://github.com/rarecoil/overthewire
Writeups for Over The Wire wargames, for total security noobs.
ctf-writeups infosec noob-friendly owasp wargames websec
Last synced: 22 Aug 2025
