Repo for pentest productivity scripts

Various proofs of concept examples using Github Actions 🤖

A searchable directory of TLS ciphersuites and related security details.

Damn Vulnerable Web Application (DVWA)

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Small projects in universal build ecosystems to configure CI and Artifactory

Dockerfile repository for a Jenkins preconfigured with plugins, jobs and Jenkins Configuration as Code plugin

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

University lecture on "IT Security" as Open Educational Resources material

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Run the Damn Vulnerable Web App on Heroku - Docker on Heroku How To

REST/JSON API to the Burp Suite security tool.

It's a Jenkins plugin that allows to start and execute the OWASP ZAP security tool.

An exploit for CVE-2015-1538-1 - Google Stagefright ‘stsc’ MP4 Atom Integer Overflow Remote Code Execution