Web Vulnerability Analysis Archives • Page 6 of 18 • Cybersecurity News

packj: detect malicious/risky open-source software packages

do son July 26, 2022

Packj flags malicious/risky open-source packages Packj (pronounced package) is a command-line (CLI) tool to vet open-source software...

restler-fuzzer v9.2.2 releases: first stateful REST API fuzzing tool

do son July 21, 2022

RESTler What is RESTler? RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through...

GraphCrawler: GraphQL automated testing tookit

do son July 19, 2022

GraphCrawler Graph Crawler is an automated testing toolkit for any GraphQL endpoint. It will run through and...

File Upload Vulnerability Scenarios

do son July 14, 2022

File Upload Vulnerability Scenarios (Challenges) This repository is a dockerized PHP application containing some file upload vulnerability...

chain-bench v0.1.8 releases: auditing your software supply chain stack for security compliance auditing software supply chain

chain-bench v0.1.8 releases: auditing your software supply chain stack for security compliance

do son June 21, 2022

chain-bench Chain-bench is an open-source tool for auditing your software supply chain stack for security compliance based...

XSS Vulnerability Scenarios: XSS vulnerability challenges and bypass examples

do son June 8, 2022

XSS Vulnerability Scenarios (challenges) This repository is a Dockerized php application containing some XSS vulnerability challenges. The...

MITM Intercept: intercept and modify non-HTTP protocols through Burp & others

do son June 1, 2022

MITM Intercept A little bit less hackish way to intercept and modify non-HTTP protocols through Burp and...

haxunit: combines active & passive subdomain enumeration tools and port scanning tools with vulnerability discovery tools

do son May 30, 2022

haxunit HaxUnit combines multiple active and passive subdomain enumeration tools and port scanning tools with vulnerability discovery...

CRLFsuite v2.5.2 releases: Fast CRLF injection scanning tool

do son May 26, 2022

CRLFsuite CRLFsuite is a fast tool specially designed to scan CRLF injection. Features ✔️ Single URL scanning ✔️ Multiple...

Jeeves: looking to Time-Based Blind SQLInjection through recon

do son May 25, 2022

Jeeves Jeeves is made for looking to Time-Based Blind SQLInjection through recon. Install > go install github.com/ferreiraklet/Jeeves@latest...

recheck v4.5 beta4 releases: The trustworthy ReDoS checker check ReDoS vulnerability

recheck v4.5 beta4 releases: The trustworthy ReDoS checker

do son May 17, 2022

What is ReDoS vulnerability? A regular expression is the most known text processing utility for programmers. There...

pocsploit: open source PoC verification framework

do son May 16, 2022

pocsploit pocsploit is a lightweight, flexible, and novel open-source poc verification framework. Pain points of the POC...

Local PHP Security Checker v2.0.6 releases: checks if your PHP application depends on PHP packages with known security vulnerabilities PHP security vulnerabilities checker

Local PHP Security Checker v2.0.6 releases: checks if your PHP application depends on PHP packages with known security vulnerabilities

do son May 3, 2022

Local PHP Security Checker The Local PHP Security Checker is a command-line tool that checks if your...

Node Security Shield: Securing NodeJS Applications

do son April 29, 2022

Node Security Shield Node Security Shield (NSS) is a Developer and Security Engineer friendly module for Securing...

Dome: active and/or passive scans to obtain subdomains and search for open ports

do son April 26, 2022

DOME – A subdomain enumeration tool Dome is a fast and reliable python script that makes active...