The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
翻译 - Web 安全测试指南是一个全面的开源指南,用于测试 Web 应用程序和 Web 服务的安全性。
#夺旗赛 (CTF) 和网络安全资源#Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
翻译 - Nishang-进攻性PowerShell,用于红队,渗透测试和进攻性安全。
Penetration Testing/Security Cheatsheets
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls...
翻译 - 移动安全测试指南(MSTG)是用于移动应用安全开发,测试和逆向工程的综合手册。
The iOS Security Testing Framework
OWASP Web Application Security Testing Checklist
Automated Security Testing For REST API's
The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
Checklists for Testing Security environment
GraphQL security testing tool
GraphQL automated security testing toolkit
Python API security testing tool from OpenStack Security Group
Smart Meter Security Testing Framework
A REST API security testing framework.
Dynamic Application and API Security Testing
An on-path blackbox network traffic security testing tool
翻译 - 路径上的黑匣子网络流量安全测试工具
Simple HTTP listener for security testing
📦 Make security testing of K8s, Docker, and Containerd easier.
翻译 - CDK是一个开放源代码的容器渗透工具包,可在不依赖任何操作系统的情况下,在不同的瘦容器中进行稳定利用。它带有有用的网络工具,许多强大的PoC / EXP可帮助您轻松逃脱容器并接管K8s集群。
Penetration Testing and Offensive Security Interview Questions
InQL - A Burp Extension for GraphQL Security Testing
翻译 - InQL-GraphQL安全测试的Burp扩展