Social Engineering Testing tool in Telegram environment for human factor and auth session leak
-
Updated
Jun 28, 2020 - HTML
Social Engineering Testing tool in Telegram environment for human factor and auth session leak
Easy way to automate the complex task
A docker container that integrates static analysis tools into your project
Security Research Blog
Ghost-Phish is a Bash-based tool for simulating phishing attacks, offering customizable emails, phishing sites, and real-time user tracking to help test and improve cybersecurity defenses.
SVG XSS Exploiter is a web tool built with Python and Flask that lets users inject JavaScript payloads into SVG images to simulate XSS attacks. Made for ethical hackers and security researchers, it offers a simple UI to upload and test malicious SVGs safely in a local environment. Built strictly for educational and authorized testing purposes only.
Deliberately vulnerable REST API for OWASP Top 10 (2023) security testing and learning.
Deliberately vulnerable banking app for QualityMax testing demos
This repository contains the weekly assignments for the Codepath Web Security course.
AI security payloads and wordlists. Prompt injection, jailbreaks, model exploitation. The SecLists of AI. From the team behind 350+ verified vulnerabilities across the ML ecosystem.
A Python-based automated web vulnerability scanner that detects common security flaws like SQLi, XSS, LFI, and misconfigurations. It includes a GUI interface, crawler, payload engine, and PDF report generation for security testing.
Hostile attack page for testing QAMax demo crawl pipeline security
Test for click jacking vulnerability in website.
Chowkidar automates security scans, leveraging open-source tools to identify vulnerabilities. Users simply input project details to receive detailed, actionable reports, ensuring robust security with minimal effort.
A powerful, privacy-focused web-based tool for generating and testing TOTP (Time-based One-Time Password) and HOTP (HMAC-based One-Time Password) codes. Designed for developers, security professionals, and anyone who needs to test authenticator app implementations without compromising their sensitive credentials.
A benign local test suite for evaluating instruction-authority boundaries in AI browsers and browser agents.
PhoenixAutomationFramework is a comprehensive software testing framework that integrates UI Automation (Selenium + TestNG + POM), API Automation (REST Assured + TestNG), and BDD Framework (Cucumber + Selenium + Maven). It also includes Performance and Security Test Plans to ensure end-to-end quality assurance.
Helper file to create the so-called "Attack Surface Security Metrics" aka OSSTMM's RAV (Risk Assessment Value)
Penetration Tester portfolio. As a Security Researcher, I provided ethical hack disclosures for organizations like NASA and Intel. Expert in web security, vulnerability research, and helping businesses fix website flaws. Focused on professional-grade penetration testing.
Add a description, image, and links to the security-testing topic page so that developers can more easily learn about it.
To associate your repository with the security-testing topic, visit your repo's landing page and select "manage topics."