Sites like

vulnerability-lab.com
Alternatives

Brutelogic.com.br

Ostif.org

Yeswehack.com

YesWeHack #1 Bug Bounty Platform in Europe

Bug Bounty secures applications the agile way with a global community of ethical hackers through private and public programs. Create an effective vulnerability disclosure strategy for security researchers.

Openbugbounty.org

Free Bug Bounty Program and Coordinated Vulnerability Disclosure | Open Bug Bounty

Report a vulnerability or start a free bug bounty program via Open Bug Bounty vulnerability disclosure platform.

Xsses.rocks

Html5sec.org

W4rri0r.com

w4rri0r - Hacking Is Not A Crime - It's an art of Awareness

Cloud Security Mobile Security Wireless Security Network Security Tab 1 Cloud Security Cloud Security is the set of security protocols, methodologies and technologies that protect the availability of cloud resources and the integrity of data stored in a cloud computing environment. Cloud security differs from traditional computer security in that...

Excess-xss.com

Excess XSS: A comprehensive tutorial on cross-site scripting

A comprehensive tutorial on cross-site scripting.

Hacken.io

Pentester.land

Pentester Land · Offensive Infosec

The newsletter is dead, long live the newsletter! 12 Jul 2020 • newsletter This is a long due post. Since The 5 Hacking Newsletter has stopped on this blog, I’ve been getting many questions about it. So, even though most readers already know by now, here’s a summary of what...

Nixu.com

Intigriti.com

Intigriti - Bug Bounty & Agile Pentesting Platform

Intigriti offers bug bounty and agile penetration testing solutions powered by Europe's #1 leading network of ethical hackers.

Hackenproof.com

Bugcrowd.com

#1 Crowdsourced Cybersecurity Platform | Bugcrowd

Bugcrowd teams with elite security researchers to reduce risk & improve security ROI through our bug bounty, pen testing, & vulnerability disclosure programs.

Hackerone.com

HackerOne | #1 Trusted Security Platform and Hacker Program

Reduce your cybersecurity risk/vulnerabilities through bug bounty programs, VDPs, attack resistance management, attack surface management, security assessments, and pentest solutions.

0day.today

0day.today Agreement - 0day.today Exploit Database : vulnerability : 0day : new exploits : buy and sell private exploit : shellcode by 0day Today Team

    0day Today is the ultimate database of exploits and vulnerabilities and a great resource for vulnerability researchers and security professionals. Our aim is to collect exploits from submittals and various mailing lists and concentrate them in one, easy-to-navigate database. This was written solely for educational purposes. Use it...

Secproject.com

Soroush Dalili (@irsdl) – سروش دلیلی | Web AppSec ninja, a semicolon enthusiast!

Table of Contents: Introduction 1. Execute command using web.config in the root or an application directory 1.1. Executing web.config as an ASPX page 1.2. Running command using AspNetCoreModule 1.3. Using Machine Key 1.4. Using JSON_AppService.axd 2. Execute command using web.config in a subfolder/virtual directory 2.1. Abusing the compilerOptions attribute 2.1.1....

Portswigger.net

Web Application Security, Testing, & Scanning - PortSwigger

PortSwigger offers tools for web application security, testing, & scanning. Choose from a range of security tools, & identify the very latest vulnerabilities.

Perspectiverisk.com

Cyber Security and Penetration Testing Services - Perspective Risk

At Perspective Risk, a Content+Cloud company, our security professionals are obsessed by cyber security. We are the leading Pen Test company in the UK.

Enciphers.com

Penetration Testing | Vulnerability Assessment | Security Training

Advance Penetration Testing, Vulnerability Assessment, Security Training

Wordpress.com

WordPress.com: Fast, Secure Managed WordPress Hosting

Create a free website or build a blog with ease on WordPress.com. Dozens of free, customizable, mobile-ready designs and themes. Free hosting and support.

Alf.nu

Neuralegion.com

Bright Security: Developer-Friendly DAST - CI/CD Security Testing - Bright Security

Bright Security is the next generation AI-powered DAST. Discover OWASP Top 10 and zero days with no false positives.

Vulmon.com

Vulmon - Vulnerability Intelligence Search Engine

Vulmon is a vulnerability and exploit search engine with vulnerability intelligence features.

Exploitalert.com

Exploitalert - database of exploits

Exploitalert

Cxsecurity.com

CXSECURITY.COM Free Security List

CXSECURITY (Independent information about security) is a huge collection of information on data communications safety. Its main objective is to inform about errors in various applications.

Hacktricks.xyz

Codegrazer.com

CodeGrazer: Penetration Testing Services

CodeGrazer is the newly formed pentest firm based in Leeds, UK, offering security services to protect private companies internal infrastructure and web services with quick turnaround and high quality standards.

Gracefulsecurity.com

Akimbo Core

Your Vulnerability Management Sucks Published: 16 March 2022 On March 16th I had the pleasure of speaking at the Yorkshire Cyber Security Cluster about Vulnerability Management. I've included my slides from the presentation and some speaker notes on the content covered here. Continue Reading HTTP Security Headers: Cache-Control Published: 21...