Giter Site home page Giter Site logo

Cover

Wation's Projects

cicephpbox icon cicephpbox

The command injection sandbox is a tool for testing command injection vulnerabilities in web apps, in a safe environment.

cicesandbox icon cicesandbox

This web application provides a sandbox environment for testing and learning about command injection and code execution vulnerabilities, with several endpoints for testing different types of vulnerabilities.

cloudssrfer icon cloudssrfer

CloudSSRFer tests SSRF on Amazon AWS cloud to extract sensitive information.

dependencyconfusionlab icon dependencyconfusionlab

Designed to showcase the concept of dependency confusion, a security vulnerability that can arise when using package managers like pip.

favxhasher icon favxhasher

FavXHasher is a cli tool designed to calculate the hash value of a favicon from a given URL, This tool can be particularly useful for detecting potential phishing websites by leveraging Shodan's search capabilities.

nodejscelab icon nodejscelab

The purpose of this code is to demonstrate the potential risks associated with using the `eval()` function with user input.

nodejscookiestealer icon nodejscookiestealer

The NodeJs cookie stealer is a tool that can be used in penetration testing and XSS attacks to steal browser cookies from victims.

nodejsssti icon nodejsssti

Express app with Pug templates demonstrating SSTI vulnerability and secure implementation for educational purposes.

nodemongonosqlilab icon nodemongonosqlilab

Explore NoSQL injection vulnerabilities with this educational project on secure coding practices.

passgate icon passgate

A list of commonly used passwords that should not be used for security purposes

phpcookiestealer icon phpcookiestealer

The PHP cookie stealer is a tool that can be used in penetration testing (XSS attacks) to steal browser cookies for poc.

phpdeserializationlab icon phpdeserializationlab

This lab demonstrates a simple example of insecure deserialization in PHP. Insecure deserialization is a vulnerability that can lead to remote code execution when an application deserializes untrusted data.

phpssti icon phpssti

This repository provides an example PHP application using Twig templates to illustrate Server-Side Template Injection (SSTI) vulnerabilities and a safe implementation.

phpupbox icon phpupbox

PHPUpBox is a project that demonstrates file upload security issues in PHP applications.

pixelfarm icon pixelfarm

Various formats that can be used for testing and bypassing server-side MIME type verification during file uploads.

pythoncookiestealer icon pythoncookiestealer

The Python cookie stealer is a tool that can be used in penetration testing and XSS attacks to steal browser cookies from victims.

pythonssti icon pythonssti

FastAPI app with Jinja2 SSTI vulnerability example to demonstrate security risks in web applications.

tamperx icon tamperx

This tool checks whether a target URL is vulnerable to verb tampering.

testnezhadcrm icon testnezhadcrm

The project is designed for educational purposes and aims to showcase how a frontend can interact with an API to perform basic CRUD operations.

tplmap3 icon tplmap3

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

websecurityvision icon websecurityvision

WebSecurityVision is a tool for checking XSS vulnerabilities and security headers in web applications, displaying browser information if vulnerabilities are found.

xxesandbox icon xxesandbox

The PHP sandbox environment is a Docker-based tool for testing XML processing code, with XXE vulnerabilities demonstrated and security considerations explained.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.