Application Security

Reliable Resources for AppSec

Getting Started

Component	Description
Back end Servers	The hardware and operating system that hosts all other components and are usually run on operating systems like Linux, Windows, or using Containers.
Web Servers	Web servers handle HTTP requests and connections. Some examples are Apache, NGINX, and IIS.
Databases	Databases (DBs) store and retrieve the web application data. Some examples of relational databases are MySQL, MSSQL, Oracle, PostgreSQL, while examples of non-relational databases include NoSQL and MongoDB.
Development Frameworks	Development Frameworks are used to develop the core Web Application. Some well-known frameworks include PHP, C#, Java, Python, and NodeJS JavaScript

Component

Description

Back end Servers

The hardware and operating system that hosts all other components and are usually run on operating systems like Linux, Windows, or using Containers.

Web Servers

Web servers handle HTTP requests and connections. Some examples are Apache, NGINX, and IIS.

Databases

Databases (DBs) store and retrieve the web application data. Some examples of relational databases are MySQL, MSSQL, Oracle, PostgreSQL, while examples of non-relational databases include NoSQL and MongoDB.

Development Frameworks

Development Frameworks are used to develop the core Web Application. Some well-known frameworks include PHP, C#, Java, Python, and NodeJS JavaScript

Field References

OWASP WSTG 4.2 !

Burpsuite: Commercial Web app testing tool !

Awesome Application Security Checklist

OWASP Cheat Sheet Series

Awesome Web Hacking from @infoslack

Awesome Web Security

PortSwigger Web Security Academy Lab Files from @rkhal101

Hack-Tools Chrome Extension for Web Pentesting

OWASP Vulnerability Scanner Tool List

Awesome Hacking Resources

Damn Vulnerable PHP App

Vulnerable Java Application

OWASP Secrets Management focused vulnerable app

403 byebye

TCM Security PWST Lab Environment !

Web Pentesting Checklist by Joas

Hetty tool

HBSQLi

References

Resources
OWASP API Security Top 10 Vulnerabilities	API Security Checklist	Keyhacks
Vulnerable API Instance by @raj-kumar-j	Hacking APIs book by Corey Ball	DVWS: Vulnerable application with web service and API
DVGA: Vulnerable GraphQL API application	API Workshop by Corey Ball	OWASP API Tool List
MindAPI - interactive Mind Map

Resources

OWASP API Security Top 10 Vulnerabilities

API Security Checklist

Keyhacks

Vulnerable API Instance by @raj-kumar-j

Hacking APIs book by Corey Ball

DVWS: Vulnerable application with web service and API

DVGA: Vulnerable GraphQL API application

API Workshop by Corey Ball

OWASP API Tool List

MindAPI - interactive Mind Map

Testing Tools

Tools
Grapql-cop	graphql voyager -converts a response of an introspection query into a visual graph that maps	InQL -can inspect the introspection query results and generate clean documentation in different formats (Burp Extension)
Online JSON Web Token (JWT) Tool/Reference !	SOAPUI	Postman
Kubeshark - API Traffic Viewer for Kubernetes	Metlo - API security tool	KiteRunner

Tools

Grapql-cop

graphql voyager -converts a response of an introspection query into a visual graph that maps

InQL -can inspect the introspection query results and generate clean documentation in different formats (Burp Extension)

Online JSON Web Token (JWT) Tool/Reference !

SOAPUI

Postman

Kubeshark - API Traffic Viewer for Kubernetes

Metlo - API security tool

KiteRunner

Reconnaissance

Final Recon (Web Reconnaissance) from @thewhiteh4t

All in One Recon Tool (AORT)

katana by ProjectDiscovery

Domain to IP converter (Python) by @YSSVirus

Cariddi by @edoardott

Directory Fuzzing

CeWL

fzf - Use alias in CLI to easily discover installed wordlists

SecLists - various lists

SubDomain/DNS Enumeration

BurpSuite Plugins

Common
Nuclei burp plugin (in Bapp store) - generate nuclei template from burp requests	HackBar Extension (in Bapp store) - Security testing Payloads
IP Rotate Burp Extension (in BApp store)	Bypass-WAF (in BAPP store)
Autorize - Automatic authorization enforcement detection	Hackvertor – Handy type conversion

Common

Nuclei burp plugin (in Bapp store) - generate nuclei template from burp requests

HackBar Extension (in Bapp store) - Security testing Payloads

IP Rotate Burp Extension (in BApp store)

Bypass-WAF (in BAPP store)

Autorize - Automatic authorization enforcement detection

Hackvertor – Handy type conversion

Additional Plugins

Burp Bounty – Profile-based scanner

Active Scan++ – Add more power to Burp’s Active Scanner

AuthMatrix – Authorization/PrivEsc checks

Broken Link Hijacking – For BLH (Broken Link Hijacking)

Collaborator Everywhere – Pingback/SSRF (Server-Side Request Forgery)

Command Injection Attacker

Content-Type Converter – Trying to bypass certain restrictions by changing Content-Type

Decoder Improved – More decoder features

Freddy – Deserialization

Flow – Better HTTP history

HTTP Request Smuggler

Hunt – Potential vuln identifier

InQL – GraphQL Introspection testing

J2EE Scan – Scanning J2EE apps

JSON/JS Beautifier

JSON Web Token Attacker

ParamMiner – Mine hidden parameters

Reflected File Download Checker

Reflected Parameter – Potential reflection

SAML Raider – SAML testing

Upload Scanner – File upload tester

Web Cache Deception Scanner

Common Attacks

PortSwigger XSS Cheat Sheet !

XSS Exploitatation Tool

Tiny XSS Payloads

D4rkXSS

Advanced Attacks

ysoerial for Java libraries

Java Deserialization CheatSheet

ysoserial for .NET libraries

PHP Generic Gadget chains (PHPGGC) - AKA "ysoserial for PHP"

PreviousOffensive-Cybersecurity NextGeneral

Last updated 2 months ago

CyberSpace Notebook