Application Security

Reliable Resources for AppSec

Getting Started

Component

Description

Back end Servers

The hardware and operating system that hosts all other components and are usually run on operating systems like Linux, Windows, or using Containers.

Web Servers

Web servers handle HTTP requests and connections. Some examples are Apache, NGINX, and IIS.

Databases

Databases (DBs) store and retrieve the web application data. Some examples of relational databases are MySQL, MSSQL, Oracle, PostgreSQL, while examples of non-relational databases include NoSQL and MongoDB.

Development Frameworks

Development Frameworks are used to develop the core Web Application. Some well-known frameworks include PHP, C#, Java, Python, and NodeJS JavaScript

Field References

OWASP WSTG 4.2 !

Burpsuite: Commercial Web app testing tool !

Awesome Application Security Checklist

OWASP Cheat Sheet Series

Awesome Web Hacking from @infoslack

Awesome Web Security

PortSwigger Web Security Academy Lab Files from @rkhal101

Hack-Tools Chrome Extension for Web Pentesting

OWASP Vulnerability Scanner Tool List

Awesome Hacking Resources

Damn Vulnerable PHP App

Vulnerable Java Application

OWASP Secrets Management focused vulnerable app

403 byebye

TCM Security PWST Lab Environment !

Web Pentesting Checklist by Joas

Hetty tool

HBSQLi

Reconnaissance

Final Recon (Web Reconnaissance) from @thewhiteh4t

All in One Recon Tool (AORT)

katana by ProjectDiscovery

Domain to IP converter (Python) by @YSSVirus

Cariddi by @edoardott

Directory Fuzzing

CeWL

fzf - Use alias in CLI to easily discover installed wordlists

SecLists - various lists

SubDomain/DNS Enumeration

Plugins

Common

Nuclei burp plugin (in Bapp store) - generate nuclei template from burp requests

HackBar Extension (in Bapp store) - Security testing Payloads

IP Rotate Burp Extension (in BApp store)

Bypass-WAF (in BAPP store)

Autorize - Automatic authorization enforcement detection

Hackvertor – Handy type conversion

Sensitive Discoverer - Discovers sensitive information inside HTTP messages

Nowafpls - Bypass WAFs through the insertion of Junk Data

Attack Surface Detector (in BAppp store) - uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

Additional Plugins

Burp Bounty – Profile-based scanner

Active Scan++ – Add more power to Burp’s Active Scanner

AuthMatrix – Authorization/PrivEsc checks

Broken Link Hijacking – For BLH (Broken Link Hijacking)

Collaborator Everywhere – Pingback/SSRF (Server-Side Request Forgery)

Command Injection Attacker

Content-Type Converter – Trying to bypass certain restrictions by changing Content-Type

Decoder Improved – More decoder features

Freddy – Deserialization

Flow – Better HTTP history

HTTP Request Smuggler

Hunt – Potential vuln identifier

InQL – GraphQL Introspection testing

J2EE Scan – Scanning J2EE apps

JSON/JS Beautifier

JSON Web Token Attacker

ParamMiner – Mine hidden parameters

Reflected File Download Checker

Reflected Parameter – Potential reflection

SAML Raider – SAML testing

Upload Scanner – File upload tester

Web Cache Deception Scanner

Common Attacks

PortSwigger XSS Cheat Sheet !

XSS Exploitatation Tool

Tiny XSS Payloads

D4rkXSS

IbrahimXSS

Advanced Attacks

ysoerial for Java libraries

Java Deserialization CheatSheet

ysoserial for .NET libraries

PHP Generic Gadget chains (PHPGGC) - AKA "ysoserial for PHP"

PreviousLive Vulnerable Sites NextRecon + OSINT

Last updated 1 month ago

Getting Started

Field References

Top Programs

Plugins

Common Attacks

Advanced Attacks