OWASP组织创建的安全速查表,目标是帮助阅读者构建更加安全的应用程序
#夺旗赛 (CTF) 和网络安全资源# OWASP Juice Shop:可能是最不安全的现代化,复杂的网站。用于漏洞学习目的,包含多种热门安全漏洞。
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
翻译 - Web 安全测试指南是一个全面的开源指南,用于测试 Web 应用程序和 Web 服务的安全性。
A curated list of resources for learning about application security
翻译 - 精选的资源列表,用于学习应用程序安全性
Metlo is an open-source API security platform.
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
翻译 - 我们非常受欢迎的AWS和Azure上的Breaking and Pwning应用程序和服务器的课程内容,实验室设置说明和文档,动手培训!
#安卓# Resources for Application Security including Web, API, Android, iOS and Thick Client
Pen Test Report Generation and Assessment Collaboration
A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations, while also converting HTTP requests to JavaScript for enhanced...
Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...