Erlik 2 is a vulnerable Flask Web App. It is a lab environment created for people who want to improve…
Erlik is a vulnerable SOAP web service. It is a lab environment created for people who want to improve themselves…
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration…
Log4J-Detector is a Scanner that detects vulnerable Log4J versions to help teams assess their exposure to CVE-2021-44228 (CRITICAL), CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832. Can search for…
Allsafe is an intentionally vulnerable application that contains various vulnerabilities. Unlike other vulnerable Android apps, this one is less like…
Regexploit a tool to Find regexes which are vulnerable to Regular Expression Denial of Service (ReDoS). More info on the Doyensec…
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security. About…
Fawkes is a tool to search for targets vulnerable to SQL Injection. Performs the search using Google search engine. Options…
Some HTTP parameter names are more commonly associated with one functionality than the others. For example, the parameter ?url= usually…
OpenRelayMagic is a tool to test for vulnerable open relays on SMTP servers. Features Check single target/ domain listPort 587…