Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)

A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)

Code to share the knowledge I gained while designing and implementing micro services

Hands-On workshop for securing a reactive spring boot 2 application in multiple steps

Cloud-Native Microservice Security Bootcamp

A reinforced version of the Wavsep evaluation platform.

Integrate our security scans with your Jenkins CI/CD pipeline

Optimize your web vulnerability assessments with PassiveDigger, a comprehensive Burp Suite extension that specializes in passive traffic analysis. Detect potential vulnerabilities, get actionable insights, and supercharge your security audits.

A seriously flawed Java project for teaching "OWASP Top 10 - 2017" concepts.

Java Security Education Framework (JSEF) 是基于Spring Boot 3.x构建的Web安全实践平台，专为开发者、安全研究员、高校学生及企业培训设计。通过35+种真实业务场景下的安全漏洞实例（含注入攻击、越权访问、敏感信息泄露等核心类型），提供“原理讲解→漏洞复现→代码对比→修复验证”的完整学习闭环，帮助学习者从“理论”到“实战”快速掌握Web安全核心能力。

Project for the course: https://cybersecuritybase.github.io/

A vehicle service reservation application with a focus on security, authentication, and access control.

Bachelor’s Work - WEB programming

This project is a Spring MVC-based Java application that implements a security interceptor to validate incoming HTTP requests and prevent common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), and malicious file uploads.

A dynamic web application for vehicle service reservations, securing against OWASP Top 10 vulnerabilities. It uses OIDC protocols with the Asgardeo IDP for user authentication and access control.

Project for the class Computer Security

Created a secure vehicle service reservation system. Implemented OIDC authentication and ensured compliance with OWASP Top 10 security practices, featuring user profiles and reservation management.

Ecom is a Spring Boot-based e-commerce application offering user authentication, role-based access, product management, a shopping cart, and admin controls. Built with Java 17, Spring Security, and Hibernate, it ensures secure and efficient operations. Its intuitive setup and robust features make it ideal for scalable e-commerce solutions.

Same vulnerable app as swsec-intro, but in a more modern framework.