awesome-data-leak
awesome-vulnerable-apps
awesome-data-leak | awesome-vulnerable-apps | |
---|---|---|
1 | 7 | |
22 | 849 | |
- | - | |
0.0 | 4.5 | |
almost 2 years ago | 25 days ago | |
- | Creative Commons Zero v1.0 Universal |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
awesome-data-leak
awesome-vulnerable-apps
- The next step
-
Where to practice Owasp mobile top 10 vulnerabilities?-
As well as a whole list of vulnerable applications for different fields, including mobile of course: https://github.com/vavkamil/awesome-vulnerable-apps
-
Juice shop
OWAS PJuice Shop is awesome, you can find more apps for practice here https://github.com/vavkamil/awesome-vulnerable-apps/
-
Vulhub: Pre-Built Vulnerable Environments Based on Docker-Compose
https://github.com/vavkamil/awesome-vulnerable-apps#owasp-to... :
> OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
And there's a book, an Open Source Official Companion Guide book titled "Pwning Juice Shop":
- How to practice hacking topics
- Need some resources
-
Does doing CTF help?
It depends on how the CTF is designed. I would suggest to rather try the "vulnerable by design" exercises which I'm collecting here https://github.com/vavkamil/awesome-vulnerable-apps
What are some alternatives?
Dork-Admin - 盘点近年来的数据泄露、供应链污染事件
bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
the-book-of-secret-knowledge - A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
juice-shop - OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
awesome-privilege-escalation - A curated list of awesome privilege escalation
awesome-ethical-hacking-resources - 😎 🔗 Awesome list about all kinds of resources for learning Ethical Hacking and Penetration Testing.
awesome-bugbounty-tools - A curated list of various bug bounty tools
Interlace - Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Android-InsecureBankv2 - Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
owaspbwa - OWASP Broken Web Applications Project
allsafe - Intentionally vulnerable Android application.