Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

This repository contains OWASP Top 10 CTF challenges designed to test your skills in web application security. Each category includes both "easy" and "hard" challenges.

open source and free tools for bug and vulnerability discovery

Little python script to generate random passwords that meets certain requirements, to help solve the "Login Support Team" challenge from OWASP Juice Shop

A demonstration lab showing the risks and exploitation techniques for hardcoded encryption keys in client-side JavaScript. This educational repository provides a hands-on approach to understanding how exposed keys can be used to intercept, decrypt, and manipulate encrypted web communications, including bypassing security controls like OTP.

Curso de OWASP Top 10: de Injections a monitoramento.