Skip to content
#

pentesting

Star

Here are 1,679 public repositories matching this topic...

Language: All
Filter by language
All 1,679 Python 641 Shell 174 Go 86 C 61 HTML 57 PHP 52 JavaScript 50 PowerShell 47 Ruby 45 Java 43
Sort: Best match
Sort options
Best match Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

OWASP / owasp-mstg

Star
Open

Add MSTG-RESILIENCE-7 and MSTG-RESILIENCE-8

2
commjoen
commjoen commented Jan 11, 2019

Add 8.7 and 8.8 for android and ios: show how you can delay the attacker or report tampering to the backend as a response to a tamper detected
8.7: The app implements multiple mechanisms in each defense category (8.1 to 8.6). Note that resiliency scales with the amount, diversity of the originality of the mechanisms used.
8.8: The detection mechanisms trigger responses of different types, includ

Read more
Android Good first issue iOS 📃 Requirement

Ciphey / Ciphey

Star
Find more good first issues

vanhauser-thc / thc-hydra

Star
Open

Feature request: http-form module multipart format support

1
bugrabklmz
bugrabklmz commented Jan 23, 2021

I testing bruteforce my opencart store.

this is body request:

-----------------------------34237939373614592773956005873
Content-Disposition: form-data; name="username"

^USER^
-----------------------------34237939373614592773956005873
Content-Disposition: form-data; name="password"

^PASS^
-----------------------------34237939373614592773956005873
Content-Disposition: form-dat
Read more
enhancement good first issue help wanted

ffuf / ffuf

Star
Find more good first issues
RustScan

RustScan / RustScan

Star
Open

Write CI that checks for specific outputs in the terminal

1
bee-san
bee-san commented Oct 18, 2020

RustScan has an accessible mode, rustscan --accessible which should promise not to have any weird ASCII text in it.

Write CI that runs RustScan with --accessible a few times, with different flags / options and check the terminal output to see if it contains one of these:

  1. [!]
  2. [~]
  3. [>]
  4. | {}

If any of these characters appear in any of the tests, fail the CI. E

Read more
feature_request good first issue hacktoberfest
Find more good first issues

Ullaakut / cameradar

Sponsor Star
Find more good first issues
wstg

OWASP / wstg

Star
Open

ATHN-02 Testing for Default Credentials

15
ThunderSon
ThunderSon commented Sep 12, 2020

What's the issue?
Overwritten test scenario, can be summarized and link to payload lists from other repos

How do we solve it?
Chop down the content to the required and needed information, link to payload lists instead of enumerating all possible usernames and passwords, provide further guidance on how to test.

If no one is up to handle it, I can take care of it

Read more
good first issue revise
Find more good first issues

Improve this page

Add a description, image, and links to the pentesting topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the pentesting topic, visit your repo's landing page and select "manage topics."

Learn more