qazbnm456 / awesome-web-security Goto Github PK

If it is possible, could you please add following vulnerable app for Practice?
https://github.com/anil-yelken/Vulnerable-Soap-Service
https://github.com/anil-yelken/Vulnerable-Flask-App

Hello!
Found following broken links:

• https://www.linkedin.com/in/irenelobovalbuena/ in /github/workspace/README.md
• https://www.exploit-db.com/ in /github/workspace/README.md
• https://www.offensive-security.com/ in /github/workspace/README.md
• https://www.zoomeye.org/ in /github/workspace/README.md
• https://haveibeenpwned.com/ in /github/workspace/README.md
• https://www.linkedin.com/in/daniel-stelter-gliese-170a70a2/ in /github/workspace/README.md

Hope you will able to fix it soon!
Greetings,
Report-link-action-bot!

C-Shopping-RN APP

This is a complete App developed by React Native (Expo). It is a beautiful e-commerce shopping application.

Use technology

• React Native
• Redux Toolkit
• RTK Query
• Expo Router
  -NativeWind

App open source address: https://github.com/huanghanzhilian/c-shopping-rn
Full stack open source address: https://github.com/huanghanzhilian/c-shopping

Hello!
Found following broken links:

• https://www.linkedin.com/in/irenelobovalbuena/ in /github/workspace/README.md
• https://bettercrypto.org/static/applied-crypto-hardening.pdf in /github/workspace/README.md
• https://medium.com/@east5th in /github/workspace/README.md
• https://twitter.com/realAuxy233 in /github/workspace/README.md
• https://medium.freecodecamp.org/@alex.birsan in /github/workspace/README.md
• http://blogs.360.cn/360safe/author/xsecure/ in /github/workspace/README.md
• https://www.exploit-db.com/ in /github/workspace/README.md
• https://www.offensive-security.com/community-projects/the-exploit-database/ in /github/workspace/README.md
• https://www.zoomeye.org/ in /github/workspace/README.md
• https://crt.sh/ in /github/workspace/README.md
• https://haveibeenpwned.com/ in /github/workspace/README.md
• http://www.mysql-password.com/database/1 in /github/workspace/README.md
• https://knock.xss.moe/index in /github/workspace/README.md
• https://www.linkedin.com/in/daniel-stelter-gliese-170a70a2/ in /github/workspace/README.md
• https://extensions.inrialpes.fr/ in /github/workspace/README.md

Hope you will able to fix it soon!
Greetings,
Report-link-action-bot!

A webshell manager via terminal
Simple Usage : https://asciinema.org/a/130893

https://github.com/WangYihang/Webshell-Sniper

Hello!
Found following broken links:

• https://www.linkedin.com/in/irenelobovalbuena/ in /github/workspace/README.md
• https://www.exploit-db.com/ in /github/workspace/README.md
• https://www.offensive-security.com/ in /github/workspace/README.md
• https://www.zoomeye.org/ in /github/workspace/README.md
• https://haveibeenpwned.com/ in /github/workspace/README.md
• https://www.linkedin.com/in/daniel-stelter-gliese-170a70a2/ in /github/workspace/README.md

Hope you will able to fix it soon!
Greetings,
Report-link-action-bot!

The very last line of CONTRIBUTING.md contains a link that is supposed to redirect to Richard Litt's Guide on amending commits. The link is incorrect (broken) and leads to a 404 Error.

The link is currently:

github.com/RichardLitt/docs/blob/master/amending-a-commit-guide.md

The link should be changed to:

github.com/RichardLitt/knowledge/blob/master/github/amending-a-commit-guide.md

Hello Team,
Recently I found one invalid link in the below section:

OSINT
The most complete guide to finding anyone’s email - Written by Timur Daudpota.

Looking forward to removing this link and new source link that will be helpful.

Regards,
Prashant

Hello!
Found following broken links:

• https://twitter.com/qazbnm456 in /github/workspace/README.md
• https://bitvijays.github.io/aboutme.html in /github/workspace/README.md
• https://www.linkedin.com/in/irenelobovalbuena/ in /github/workspace/README.md
• https://twitter.com/securitymb in /github/workspace/README.md
• https://twitter.com/po6ix in /github/workspace/README.md
• https://news.webamooz.com/wp-content/uploads/bot/offsecmag/147.pdf in /github/workspace/README.md
• https://twitter.com/netsparker in /github/workspace/README.md
• https://www.netspi.com/ in /github/workspace/README.md
• https://twitter.com/LightOS in /github/workspace/README.md
• https://twitter.com/h3xstream/ in /github/workspace/README.md
• https://twitter.com/_m0bius in /github/workspace/README.md
• https://0ang3el.blogspot.tw/ in /github/workspace/README.md
• https://twitter.com/phonexicum in /github/workspace/README.md
• https://www.vsecurity.com/download/publications/XMLDTDEntityAttacks.pdf in /github/workspace/README.md
• https://twitter.com/ecbftw in /github/workspace/README.md
• https://twitter.com/albinowax in /github/workspace/README.md
• https://s0cket7.com/open-redirect-vulnerability/ in /github/workspace/README.md
• https://s0cket7.com/ in /github/workspace/README.md
• https://twitter.com/garethheyes in /github/workspace/README.md
• https://twitter.com/rhinobenjamin in /github/workspace/README.md
• https://twitter.com/spengietz in /github/workspace/README.md
• https://blog.appsecco.com/@yamakira_ in /github/workspace/README.md
• https://blog.netspi.com/hacking-with-jsp-shells/ in /github/workspace/README.md
• https://twitter.com/_nullbind in /github/workspace/README.md
• https://twitter.com/kirbstr in /github/workspace/README.md
• https://twitter.com/breenmachine in /github/workspace/README.md
• https://twitter.com/pwntester in /github/workspace/README.md
• https://twitter.com/noperator in /github/workspace/README.md
• https://twitter.com/synacktiv in /github/workspace/README.md
• https://twitter.com/PhilippeDeRyck in /github/workspace/README.md
• https://r2c.dev/blog/2020/hardcoded-secrets-unverified-tokens-and-other-common-jwt-mistakes/ in /github/workspace/README.md
• https://twitter.com/ermil0v in /github/workspace/README.md
• https://twitter.com/SpiderSec/status/1191375472690528256 in /github/workspace/README.md
• https://twitter.com/SpiderSec in /github/workspace/README.md
• https://twitter.com/@shhnjk in /github/workspace/README.md
• https://twitter.com/secjuice in /github/workspace/README.md
• https://twitter.com/bbuerhaus in /github/workspace/README.md
• https://twitter.com/malerisch in /github/workspace/README.md
• https://twitter.com/steventseeley in /github/workspace/README.md
• https://twosecurity.io/ in /github/workspace/README.md
• https://twitter.com/GraphX in /github/workspace/README.md
• https://twitter.com/yu5k3 in /github/workspace/README.md
• https://paper.seebug.org/910/ in /github/workspace/README.md
• https://twitter.com/@breenmachine in /github/workspace/README.md
• http://exablue.de/blog/2017-03-15-github-enterprise-remote-code-execution.html in /github/workspace/README.md
• https://twitter.com/blaklis_ in /github/workspace/README.md
• https://jlajara.gitlab.io/posts/2019/11/30/XSS_20_characters.html in /github/workspace/README.md
• https://twitter.com/slekies in /github/workspace/README.md
• https://twitter.com/kkotowicz in /github/workspace/README.md
• https://twitter.com/sirdarckcat in /github/workspace/README.md
• https://twitter.com/strukt93/status/931586377665331200 in /github/workspace/README.md
• https://twitter.com/strukt93 in /github/workspace/README.md
• https://twitter.com/vinodsparrow in /github/workspace/README.md
• https://twitter.com/osandamalith in /github/workspace/README.md
• https://twitter.com/TomNomNom in /github/workspace/README.md
• https://twitter.com/a66at in /github/workspace/README.md
• https://twitter.com/codeshtool in /github/workspace/README.md
• https://twitter.com/d0znpp/ in /github/workspace/README.md
• https://skavans.ru/en/2017/12/02/xxe-oob-extracting-via-httpftp-using-single-opened-port/ in /github/workspace/README.md
• https://skavans.ru/ in /github/workspace/README.md
• https://blog.netspi.com/forcing-xxe-reflection-server-error-messages/ in /github/workspace/README.md
• https://blog.netspi.com/author/antti-rantasaari/ in /github/workspace/README.md
• https://twitter.com/_mohemiv in /github/workspace/README.md
• https://twitter.com/h3xstream in /github/workspace/README.md
• https://twitter.com/0xacb in /github/workspace/README.md
• https://www.auxy.xyz/web%20security/2017/07/06/all-ssrf-knowledge.html in /github/workspace/README.md
• https://twitter.com/Auxy233 in /github/workspace/README.md
• http://blog.safebuff.com/2016/07/03/SSRF-Tips/ in /github/workspace/README.md
• http://blog.safebuff.com/ in /github/workspace/README.md
• https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2018/august/aspnet-resource-files-resx-and-deserialisation-issues/ in /github/workspace/README.md
• https://twitter.com/irsdl in /github/workspace/README.md
• https://twitter.com/AmolBaikar in /github/workspace/README.md
• https://twitter.com/signalchaos in /github/workspace/README.md
• https://twitter.com/shhnjk in /github/workspace/README.md
• https://twitter.com/filedescriptor in /github/workspace/README.md
• https://twitter.com/@rafaybaloch in /github/workspace/README.md
• https://twitter.com/magicmac2000 in /github/workspace/README.md
• https://bo0om.ru/safari-client-side in /github/workspace/README.md
• https://bo0om.ru/author/admin in /github/workspace/README.md
• https://twitter.com/kinugawamasato in /github/workspace/README.md
• https://twitter.com/Abdulahhusam in /github/workspace/README.md
• http://www.phrack.org/papers/attacking_javascript_engines.html in /github/workspace/README.md
• http://blogs.360.cn/360safe/2016/11/29/three-roads-lead-to-rome-2/ in /github/workspace/README.md
• https://twitter.com/holynop in /github/workspace/README.md
• https://halbecaf.com/2017/05/24/exploiting-a-v8-oob-write/ in /github/workspace/README.md
• https://twitter.com/halbecaf in /github/workspace/README.md
• http://twitter.com/moritzj in /github/workspace/README.md
• https://twitter.com/wanderingglitch in /github/workspace/README.md
• https://theori.io/research/escaping-chrome-sandbox in /github/workspace/README.md
• https://twitter.com/tjbecker_ in /github/workspace/README.md
• https://twitter.com/PatrickBiernat in /github/workspace/README.md
• https://twitter.com/gaasedelen in /github/workspace/README.md
• https://twitter.com/itszn13 in /github/workspace/README.md
• https://sploitus.com/ in /github/workspace/README.md
• https://twitter.com/i_bo0om in /github/workspace/README.md
• https://www.exploit-db.com/ in /github/workspace/README.md
• https://www.offensive-security.com/ in /github/workspace/README.md
• https://twitter.com/brutelogic in /github/workspace/README.md
• https://twitter.com/shodanhq in /github/workspace/README.md
• https://twitter.com/heipei in /github/workspace/README.md
• https://twitter.com/zoomeye_team in /github/workspace/README.md
• https://fofa.so/?locale=en in /github/workspace/README.md
• https://twitter.com/binarypool in /github/workspace/README.md
• https://start.me/p/QRENnO/databases in /github/workspace/README.md
• https://twitter.com/technisette in /github/workspace/README.md
• https://peoplefindthor.dk/ in /github/workspace/README.md
• https://github.com/drego85 in /github/workspace/README.md
• https://github.com/m4ll0k/WAScan in /github/workspace/README.md
• https://github.com/m4ll0k in /github/workspace/README.md
• https://github.com/projectdiscovery in /github/workspace/README.md
• https://github.com/theInfectedDrake in /github/workspace/README.md
• https://github.com/flipkart-incubator in /github/workspace/README.md
• https://github.com/dagrz in /github/workspace/README.md
• https://github.com/evilcos in /github/workspace/README.md
• https://github.com/epinna in /github/workspace/README.md
• https://github.com/GoSecure in /github/workspace/README.md
• https://github.com/0xinfection in /github/workspace/README.md
• https://twitter.com/LeeAtBenf in /github/workspace/README.md
• https://github.com/b17zr in /github/workspace/README.md
• https://www.n0tr00t.com/ in /github/workspace/README.md
• https://twitter.com/HackwithGithub in /github/workspace/README.md
• https://twitter.com/cure53berlin in /github/workspace/README.md
• https://twitter.com/XssPayloads in /github/workspace/README.md
• https://twitter.com/hasegawayosuke in /github/workspace/README.md
• https://twitter.com/owasp_juiceshop in /github/workspace/README.md
• https://github.com/SecureSkyTechnology in /github/workspace/README.md
• https://twitter.com/selinuxgame in /github/workspace/README.md
• https://twitter.com/0xdabbad00 in /github/workspace/README.md
• https://github.com/RhinoSecurityLabs in /github/workspace/README.md
• https://twitter.com/steike in /github/workspace/README.md
• https://twitter.com/ChrFolini in /github/workspace/README.md
• https://www.reddit.com/r/websecurity/ in /github/workspace/README.md
• https://github.com/djadmin in /github/workspace/README.md
• https://github.com/ngalongc in /github/workspace/README.md
• https://www.linkedin.com/in/daniel-stelter-gliese-170a70a2/ in /github/workspace/README.md
• https://github.com/x0rz in /github/workspace/README.md
• https://github.com/ChALkeR in /github/workspace/README.md
• https://github.com/gregose in /github/workspace/README.md
• https://github.com/rmusser01 in /github/workspace/README.md
• http://iotscanner.bullguard.com/ in /github/workspace/README.md
• https://twitter.com/jhaddix in /github/workspace/README.md
• https://twitter.com/fransrosen in /github/workspace/README.md
• https://voidsec.com/vpn-leak/ in /github/workspace/README.md
• https://voidsec.com/ in /github/workspace/README.md
• https://www.sigpwn.io/blog/2018/4/14/domato-fuzzers-generation-engine-internals in /github/workspace/README.md
• https://www.evonide.com/side-channel-attacking-browsers-through-css3-features/ in /github/workspace/README.md
• https://www.evonide.com/ in /github/workspace/README.md
• https://twitter.com/itsC0rg1 in /github/workspace/README.md
• https://twitter.com/jmkeads in /github/workspace/README.md
• https://twitter.com/matir in /github/workspace/README.md
• https://www.secjuice.com/finding-real-ips-of-origin-servers-behind-cloudflare-or-tor/ in /github/workspace/README.md
• https://www.secjuice.com/author/paul-dannewitz/ in /github/workspace/README.md
• https://twitter.com/AntoGarand in /github/workspace/README.md
• https://blog.avatao.com/How-I-could-steal-your-photos-from-Google/ in /github/workspace/README.md
• https://twitter.com/gergoturcsanyi in /github/workspace/README.md
• https://twitter.com/@0daywork in /github/workspace/README.md
• https://segment.com/blog/authors/david-scrobonia/ in /github/workspace/README.md
• https://twitter.com/slashcrypto in /github/workspace/README.md
• https://twitter.com/t0nk42 in /github/workspace/README.md
• https://twitter.com/sandrogauci in /github/workspace/README.md

Hope you will able to fix it soon!
Greetings,
Report-link-action-bot!

Thanks for featuring my XSStrike in your list.

Well I changed my username recently and now its "s0md3v" and not "UltimateHackers" so it would be great if you can change that.

Thanks ^_^

Hello!
Found following broken links:

• https://www.linkedin.com/in/irenelobovalbuena/ in /github/workspace/README.md
• https://www.exploit-db.com/ in /github/workspace/README.md
• https://www.offensive-security.com/ in /github/workspace/README.md
• https://www.zoomeye.org/ in /github/workspace/README.md
• https://crt.sh/ in /github/workspace/README.md
• https://haveibeenpwned.com/ in /github/workspace/README.md
• https://www.linkedin.com/in/daniel-stelter-gliese-170a70a2/ in /github/workspace/README.md

Hope you will able to fix it soon!
Greetings,
Report-link-action-bot!

why the ‘Awesome Web Security - ZH .md’ is English.
a chinese study sad.
a japanese sad too.
QWQ

Hello!
Found following broken links:

• https://www.linkedin.com/in/irenelobovalbuena/ in /github/workspace/README.md
• https://www.exploit-db.com/ in /github/workspace/README.md
• https://www.offensive-security.com/ in /github/workspace/README.md
• https://www.zoomeye.org/ in /github/workspace/README.md
• https://haveibeenpwned.com/ in /github/workspace/README.md
• https://www.linkedin.com/in/daniel-stelter-gliese-170a70a2/ in /github/workspace/README.md

Hope you will able to fix it soon!
Greetings,
Report-link-action-bot!

https://www.ceeyu.io/blog/subdomain-enumeration-tools-and-techniques

Hi buddy,

This resource can't be reached. Link is broken or contains some non standard chars.

Rails Security - Written by @qazbnm456.

Please, can you double check the initial link?

Thanks.

In the section "Adding To This List" in CONTRIBUTING.md there is a link that directs to

titlecapitalization.com

This website returns ERR_CONNECTION_REFUSED when loaded.

I suggest finding a similar website and replacing the link.

When clicking the link for VWGen, it takes us to a MacOS browser lulumi-browser instead of the VWGen project.

Interested in a PR for this? If so, where would you like it inserted?

This API has been unmaintained for several years, I'm the new owner and keeping it maintained now

• The API code
• Now official
• Official announcement
• Main issue
• Main PR
• What's changed

Interested in a PR?