traw's repositories
insecure-bank
An insecure example application (Java)
juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
vulnerable-java-application
This repository contains a sample Java application vulnerable to command injection and server-side request forgery (SSRF).
ant-application-security-testing-benchmark
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
spincast-realworld
Realworld.io backend implementation using Spincast Framework
moleculer-node-realworld-example-app
Exemplary real world application built with Moleculer
hapipal-realworld-example-app
Exemplary real world application built with hapi pal
security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
aws-dev-sec-ops
Advanced AWS Security Automation Resources: Used by Udemy Course 🎓
AWSGoat
AWSGoat : A Damn Vulnerable AWS Infrastructure
sonar-cnes-report
Generates analysis reports from SonarQube web API.
uWebSockets
Tiny WebSockets
odoo
Odoo (formerly OpenERP). Open Source Apps To Grow Your Business.
scorecard
Security Scorecards - Security health metrics for Open Source
java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
medusa
Binary instrumentation framework based on FRIDA
Checklists
Red Teaming & Pentesting checklists for various engagements
threat-modeling-training
Segment's Threat Modeling training for our engineers
Penetration-Testing-Grimoire
Custom Tools and Notes from my own Penetration Testing Experience
HowToHunt
Tutorials and Things to Do while Hunting Vulnerability.
drozer
The Leading Security Assessment Framework for Android.
OSCP-Exam-Report-Template
Modified template for the OSCP Exam and Labs. Used during my passing attempt
ikos-docker
ikos-docker
katacoda-scenarios
Katacoda Scenarios