The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
-
Updated
Jun 30, 2022 - Python
#
application-security
Here are 172 public repositories matching this topic...
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
javascript
security
hacking
owasp
application-security
pentesting
ctf
vulnerable
appsec
hacktoberfest
owasp-top-10
owasp-top-ten
24pullrequests
vulnapp
-
Updated
Jul 6, 2022 - TypeScript
A curated list of resources for learning about application security
-
Updated
May 23, 2022 - PHP
Open
Onekongpc
Next generation web scanner
ruby
security
web
scanner
hacking
owasp
penetration-testing
application-security
pentesting
recon
pentest
kali-linux
appsec
network-security
web-hacking
security-tools
penetration-test
hacking-tools
pentesting-tools
penetration-testing-tools
-
Updated
Feb 5, 2022 - Ruby
ggbecker
commented
Apr 20, 2022
Extend macro function that creates OCIL entries for package removed rules to support both package removed/installed rules using an extra parameter to define the behavior of the ocil_clause (the ocil clause "package is installed" for removed package rules and "package is not installed" for installed package rules)
https://github.com/ComplianceAsCode/content/blob/fe68fcd788b85eed7559e6174d71a67
good first issue
Good candidates to get started contributing to CaC.
XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
-
Updated
Sep 12, 2020 - PHP
windows
macos
linux
security
application
unix
command
os
injection
vulnerability
application-security
security-vulnerability
bugbounty
payload
command-injection
security-testing
security-research
vulnerability-research
payload-list
os-injection
-
Updated
Apr 19, 2021
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
learning
community
infosec
application-security
pentesting
vulnerabilities
bugbounty
pentesting-tools
bugbountytips
-
Updated
Jun 20, 2022
A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
android
reverse-engineering
penetration-testing
application-security
malware-analyzer
mobile-security
-
Updated
Jul 27, 2020
Janusec Application Gateway, an application security solution which provides ACME HTTPS, WAF (Web Application Firewall), CC defense, OAuth2 Authentication and load balancing. Janusec应用网关,提供ACME自动化证书与HTTPS接入、WAF (Web Application Firewall)、CC防御、OAuth2身份认证、负载均衡等功能。
go
golang
security
acme
gateway
waf
brotli
sql-injection
application-security
web-application-firewall
port-forwarding
web-application-security
web-ssh
application-gateway
load-balance
janusec-application-gateway
janusec
-
Updated
Jun 20, 2022 - Go
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
-
Updated
Jun 9, 2021 - CSS
Open-Source Security Architecture | 开源安全架构
security
security-audit
ids
application-security
security-vulnerability
vulnerabilities
ips
vulnerability-scanners
security-scanner
security-tools
code-audit
business-security
-
Updated
May 10, 2021
Awesome PHP Security Resources 🕶 🐘 🔐
-
Updated
Sep 22, 2021
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
security
static-code-analysis
penetration-testing
dynamic-analysis
application-security
wordpress-security
mobile-security
vulnerability-management
vulnerability-scanners
security-scanner
vulnerability-assessment
network-security
webappsec
vulnerability-scanning
source-code-analysis
penetration-testing-framework
security-vulnerability-assessment
-
Updated
Jun 21, 2022 - Java
Curating the best DevSecOps resources and tooling.
devops
awesome
application-security
awesome-list
hacktoberfest
devsecops
secure-software-development
-
Updated
Jul 5, 2022
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
-
Updated
Jun 13, 2022 - Python
nginx
kubernetes
security
webserver
waf
load-balancer
apigateway
application-security
awesome-list
naxsi
modsecurity
nginx-server
nginx-configuration
mod-security
awesome-lists
nginx-security
api-security
nginx-environment
-
Updated
Sep 25, 2020
Secure Content Management for the Modern Web - "The sky is only the beginning"
php
cms
security
postgresql
free-software
secure
content-management
libsodium
cms-airship
application-security
secure-by-default
-
Updated
Mar 22, 2019 - PHP
Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
xss
vulnerability
infosec
application-security
interview-questions
appsec
webappsec
sdlc
websecurity
devsecops
security-engineering
websec
websecurity-reference
security-team
security-engineer-interview
-
Updated
Aug 7, 2020
Grab’n Run, a simple and effective Java Library for Android projects to secure dynamic code loading.
-
Updated
May 24, 2016 - Java
Web application vulnerability scanner
security
security-audit
web
hacking
web-application
application-security
web-security
hacking-tool
security-scanner
security-automation
security-tools
web-security-research
web-sec-scanner
security-testing
taipan
-
Updated
May 7, 2021
Damn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.
android
security
hacking
infosec
application-security
pentesting
android-security
hacktoberfest
vulnerable-application
vulnerable-android-apps
damn-vulnerable-bank
-
Updated
Sep 5, 2021 - Java
Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
security
application-security
security-vulnerability
bugbounty
vulnerability-management
vulnerability-assessment
network-security
security-tools
pentest-tool
security-testing
penetration-testing-framework
cve-search
cve-databases
product-security
-
Updated
Jul 18, 2018 - Python
security
bug-bounty
application-security
bugbounty
appsec
payload
payloads
lfi
rfi
web-hacking
websecurity
web-application-security
security-research
security-researcher
lfi-exploitation
payload-list
lfi-vulnerability
security-researchers
rfi-exploiton
rfi-vulnerabillity
-
Updated
Jun 9, 2021
【iOS应用安全、安全攻防】hook及越狱的基本防护与检测(动态库注入检测、hook检测与防护、越狱检测、签名校验、IDA反编译分析加密协议Demo);【数据传输安全】浅谈http、https与数据加密
-
Updated
Jan 23, 2022 - Objective-C
Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
hacking
owasp
application-security
pentesting
ctf
capture-the-flag
ctfd
hacktoberfest
facebook-ctf
owasp-juice-shop
rtb
ctfd-database
ctfd-setup
fbctf
24pullrequests
ctf-frameworks
rootthebox
-
Updated
Jun 23, 2022 - JavaScript
Fast Advanced Spam Analysis Tool
python
docker
security
ansible
ansible-playbook
docker-image
smtp
outlook
application-security
mail-analyzer
spam-analyzer
streamparse
apache-storm
dialect
spamscope
-
Updated
Apr 15, 2021 - Python
|| Activate Burp Suite Pro with Key-Generator and Key-Loader ||
java
web-application
application-security
kali-linux
hacking-tool
burpsuite
security-tools
web-application-security
pentest-tool
burpsuite-pro
kali-scripts
kali-tools
mobile-application-security-testing
-
Updated
Jul 6, 2022 - PowerShell
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
-
Updated
Jul 5, 2022 - Python
Improve this page
Add a description, image, and links to the application-security topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the application-security topic, visit your repo's landing page and select "manage topics."
What and where?
Please give the broken URL. Where is the link located?
Would you like to be assigned to this issue?
Check the box if you will submit a PR to fix this issue. Please read CONTRIBUTING.md.
-KONG [ ] Assign me, please!