scent2d

secure-code-practice

Study자료 https://rules.sonarsource.com/

PoC-XXE-demo

XXE test

Active-Directory-Enumeration

apisecurityinaction

Source code that accompanies the book API Security in Action

awesome-api-security

A collection of awesome API Security tools and resources.

bugBounty

CheatSheetSeries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

PoC-CVE-2016-10555

CVE-2016-10555 PoC code

PoC-CVE-2021-4034

Pwnkit CVE-2021-4034

DAST-Script

DAST Test

java-deserialization

Test Deserialization

java-log4shell

Test log4shell

java-RBAC

Test RBAC

java-RXSS

Test Reflected XSS

java-sec-code

Java web common vulnerabilities and security code which is base on springboot and spring security

java-SQL-Injection

Test SQL Injection

java-SSRF

Test SSRF

java-SXSS

Test Stored XSS

java-XXE

Test XXE

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

OSCP-Tricks-2023

OSCP 2023 Preparation Guide | Courses, Tricks, Tutorials, Exercises, Machines

packerExercise

packer basic

PoC-api-Throttling-bypass

Implementing Django-rest API Throttling and Unauthenticated bypass(https://infosecwriteups.com/implementing-django-rest-api-throttling-and-unauthenticated-bypass-dda550b07443)

PoC-JWT-jku

JKU Authorization Bypass

PoC-SSTI-demo

SSTI test

rasputin

A place to reborn

Set-up-Wordpress

Set up Wordpress with Docker-Compose

skills-secure-code-game

My clone repository

terraformExercise

Terraform Basic

workshop-github-actions