InQL
InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection
damnvulnerable.me is a deliberately vulnerable modern day app with lots of DOM related bugs. This app is designed to demonstrate various web vulnerabilities, including DOM-based cross-site scripting (XSS), cross-site request forgery (CSRF), and more. It's a great resource for security researchers, penetration testers, and developers to practice and improve their skills in identifying and exploiting web vulnerabilities. The app is regularly updated with new vulnerabilities and challenges, making it an excellent tool for staying up-to-date with the latest web security threats and countermeasures.
InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection
A vulnerable by design infrastructure on Azure featuring the latest released OWASP Top 10 web application security risks (2021) and other misconfigurations.
Make any application debuggable on a device.
A web application security testing platform that helps you test your knowledge on web application security through realistic scenarios with known vulnerabilities.
A tool for brute-forcing GET and POST parameters to discover potential vulnerabilities in web applications.
A tool for automated HTTP header injection