├── LICENSE.md ├── README.md ├── api └── owasp │ ├── API1-Broken-Object-Level-Authorization.md │ ├── API10-Insufficient-Logging-Monitoring.md │ ├── API2-Broken-User-Authentication.md │ ├── API3-Excessive-Data-Exposure.md │ ├── API4-Lack-of-ResourcesRate.md │ ├── API5-Broken-Function-Level-Authorization.md │ ├── API6-Mass-Assignment.md │ ├── API7-Security-Misconfiguration.md │ ├── API8-Injection.md │ └── API9-Improper-Assets-Management.md ├── cve ├── CVE-2020-1472.md ├── CVE-2021-44228.md ├── CVE-2022-22965.md ├── CVE-2022-30190.md └── CVE-2022-41082.md ├── infra ├── CMK_S3.md ├── IMDS_access.md ├── VPC_flow.md ├── balancer_exposed_publicly.md ├── bucket_logging.md ├── bucket_versioning.md ├── container_insights.md ├── invalid_headers.md ├── load_balancer_https.md ├── log_group_encrypt.md ├── low_backup_retention.md ├── policy_wildcard.md ├── public_acls.md ├── public_policies.md ├── root_block.md ├── root_keys.md ├── rule_description.md ├── sec_group.md ├── subnet_associates.md └── unencrypted_S3.md ├── logo.svg ├── mobile └── owasp │ ├── Authentication.md │ ├── Authorization.md │ ├── Communication.md │ ├── Cryptography.md │ ├── Data_Storage.md │ ├── Extraneous.md │ ├── Platform.md │ ├── Quality.md │ ├── Reverse.md │ └── Tampering.md ├── network └── Heartbleed.md ├── vulnplanet.png ├── web2 ├── owasp │ ├── A01-Broken-Access-Control.md │ ├── A02-Cryptographic-Failures.md │ ├── A03-Injection.md │ ├── A04-Insecure-Design.md │ └── A05-Security-Misconfiguration.md └── type │ ├── Authentication_Bypass.md │ ├── Authentication_Bypass2.md │ ├── Buffer_Overflow.md │ ├── Code_Execution.md │ ├── Code_Injection.md │ ├── Command_Injection.md │ ├── DOS.md │ ├── IDOR.md │ ├── Integer_Overflow.md │ ├── LDAP.md │ ├── NoSQL.md │ ├── SQL.md │ ├── SSTI.md │ ├── XPATH.md │ ├── csrf.md │ ├── deserialization.md │ ├── error.md │ ├── exposure.md │ ├── file_upload.md │ ├── prototype_pullation.md │ ├── race.md │ ├── ssrf.md │ ├── traversal.md │ ├── xss.md │ └── xxe.md └── web3 ├── Access_Control.md ├── Arithmetic.md ├── Bad_Randomness.md ├── DOS.md ├── Front_Running.md ├── Reentrancy.md ├── Short_Address_Attack.md ├── Time_manipulation.md └── Unchecked.md /LICENSE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/LICENSE.md -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/README.md -------------------------------------------------------------------------------- /api/owasp/API1-Broken-Object-Level-Authorization.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API1-Broken-Object-Level-Authorization.md -------------------------------------------------------------------------------- /api/owasp/API10-Insufficient-Logging-Monitoring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API10-Insufficient-Logging-Monitoring.md -------------------------------------------------------------------------------- /api/owasp/API2-Broken-User-Authentication.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API2-Broken-User-Authentication.md -------------------------------------------------------------------------------- /api/owasp/API3-Excessive-Data-Exposure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API3-Excessive-Data-Exposure.md -------------------------------------------------------------------------------- /api/owasp/API4-Lack-of-ResourcesRate.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API4-Lack-of-ResourcesRate.md -------------------------------------------------------------------------------- /api/owasp/API5-Broken-Function-Level-Authorization.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API5-Broken-Function-Level-Authorization.md -------------------------------------------------------------------------------- /api/owasp/API6-Mass-Assignment.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API6-Mass-Assignment.md -------------------------------------------------------------------------------- /api/owasp/API7-Security-Misconfiguration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API7-Security-Misconfiguration.md -------------------------------------------------------------------------------- /api/owasp/API8-Injection.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API8-Injection.md -------------------------------------------------------------------------------- /api/owasp/API9-Improper-Assets-Management.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/api/owasp/API9-Improper-Assets-Management.md -------------------------------------------------------------------------------- /cve/CVE-2020-1472.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/cve/CVE-2020-1472.md -------------------------------------------------------------------------------- /cve/CVE-2021-44228.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/cve/CVE-2021-44228.md -------------------------------------------------------------------------------- /cve/CVE-2022-22965.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/cve/CVE-2022-22965.md -------------------------------------------------------------------------------- /cve/CVE-2022-30190.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/cve/CVE-2022-30190.md -------------------------------------------------------------------------------- /cve/CVE-2022-41082.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/cve/CVE-2022-41082.md -------------------------------------------------------------------------------- /infra/CMK_S3.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/CMK_S3.md -------------------------------------------------------------------------------- /infra/IMDS_access.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/IMDS_access.md -------------------------------------------------------------------------------- /infra/VPC_flow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/VPC_flow.md -------------------------------------------------------------------------------- /infra/balancer_exposed_publicly.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/balancer_exposed_publicly.md -------------------------------------------------------------------------------- /infra/bucket_logging.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/bucket_logging.md -------------------------------------------------------------------------------- /infra/bucket_versioning.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/bucket_versioning.md -------------------------------------------------------------------------------- /infra/container_insights.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/container_insights.md -------------------------------------------------------------------------------- /infra/invalid_headers.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/invalid_headers.md -------------------------------------------------------------------------------- /infra/load_balancer_https.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/load_balancer_https.md -------------------------------------------------------------------------------- /infra/log_group_encrypt.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/log_group_encrypt.md -------------------------------------------------------------------------------- /infra/low_backup_retention.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/low_backup_retention.md -------------------------------------------------------------------------------- /infra/policy_wildcard.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/policy_wildcard.md -------------------------------------------------------------------------------- /infra/public_acls.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/public_acls.md -------------------------------------------------------------------------------- /infra/public_policies.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/public_policies.md -------------------------------------------------------------------------------- /infra/root_block.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/root_block.md -------------------------------------------------------------------------------- /infra/root_keys.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/root_keys.md -------------------------------------------------------------------------------- /infra/rule_description.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/rule_description.md -------------------------------------------------------------------------------- /infra/sec_group.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/sec_group.md -------------------------------------------------------------------------------- /infra/subnet_associates.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/subnet_associates.md -------------------------------------------------------------------------------- /infra/unencrypted_S3.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/infra/unencrypted_S3.md -------------------------------------------------------------------------------- /logo.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/logo.svg -------------------------------------------------------------------------------- /mobile/owasp/Authentication.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Authentication.md -------------------------------------------------------------------------------- /mobile/owasp/Authorization.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Authorization.md -------------------------------------------------------------------------------- /mobile/owasp/Communication.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Communication.md -------------------------------------------------------------------------------- /mobile/owasp/Cryptography.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Cryptography.md -------------------------------------------------------------------------------- /mobile/owasp/Data_Storage.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Data_Storage.md -------------------------------------------------------------------------------- /mobile/owasp/Extraneous.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Extraneous.md -------------------------------------------------------------------------------- /mobile/owasp/Platform.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Platform.md -------------------------------------------------------------------------------- /mobile/owasp/Quality.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Quality.md -------------------------------------------------------------------------------- /mobile/owasp/Reverse.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Reverse.md -------------------------------------------------------------------------------- /mobile/owasp/Tampering.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/mobile/owasp/Tampering.md -------------------------------------------------------------------------------- /network/Heartbleed.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/network/Heartbleed.md -------------------------------------------------------------------------------- /vulnplanet.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/vulnplanet.png -------------------------------------------------------------------------------- /web2/owasp/A01-Broken-Access-Control.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/owasp/A01-Broken-Access-Control.md -------------------------------------------------------------------------------- /web2/owasp/A02-Cryptographic-Failures.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/owasp/A02-Cryptographic-Failures.md -------------------------------------------------------------------------------- /web2/owasp/A03-Injection.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/owasp/A03-Injection.md -------------------------------------------------------------------------------- /web2/owasp/A04-Insecure-Design.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/owasp/A04-Insecure-Design.md -------------------------------------------------------------------------------- /web2/owasp/A05-Security-Misconfiguration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/owasp/A05-Security-Misconfiguration.md -------------------------------------------------------------------------------- /web2/type/Authentication_Bypass.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/Authentication_Bypass.md -------------------------------------------------------------------------------- /web2/type/Authentication_Bypass2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/Authentication_Bypass2.md -------------------------------------------------------------------------------- /web2/type/Buffer_Overflow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/Buffer_Overflow.md -------------------------------------------------------------------------------- /web2/type/Code_Execution.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/Code_Execution.md -------------------------------------------------------------------------------- /web2/type/Code_Injection.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/Code_Injection.md -------------------------------------------------------------------------------- /web2/type/Command_Injection.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/Command_Injection.md -------------------------------------------------------------------------------- /web2/type/DOS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/DOS.md -------------------------------------------------------------------------------- /web2/type/IDOR.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/IDOR.md -------------------------------------------------------------------------------- /web2/type/Integer_Overflow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/Integer_Overflow.md -------------------------------------------------------------------------------- /web2/type/LDAP.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/LDAP.md -------------------------------------------------------------------------------- /web2/type/NoSQL.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/NoSQL.md -------------------------------------------------------------------------------- /web2/type/SQL.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/SQL.md -------------------------------------------------------------------------------- /web2/type/SSTI.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/SSTI.md -------------------------------------------------------------------------------- /web2/type/XPATH.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/XPATH.md -------------------------------------------------------------------------------- /web2/type/csrf.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/csrf.md -------------------------------------------------------------------------------- /web2/type/deserialization.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/deserialization.md -------------------------------------------------------------------------------- /web2/type/error.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/error.md -------------------------------------------------------------------------------- /web2/type/exposure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/exposure.md -------------------------------------------------------------------------------- /web2/type/file_upload.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/file_upload.md -------------------------------------------------------------------------------- /web2/type/prototype_pullation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/prototype_pullation.md -------------------------------------------------------------------------------- /web2/type/race.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/race.md -------------------------------------------------------------------------------- /web2/type/ssrf.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/ssrf.md -------------------------------------------------------------------------------- /web2/type/traversal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/traversal.md -------------------------------------------------------------------------------- /web2/type/xss.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/xss.md -------------------------------------------------------------------------------- /web2/type/xxe.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web2/type/xxe.md -------------------------------------------------------------------------------- /web3/Access_Control.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Access_Control.md -------------------------------------------------------------------------------- /web3/Arithmetic.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Arithmetic.md -------------------------------------------------------------------------------- /web3/Bad_Randomness.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Bad_Randomness.md -------------------------------------------------------------------------------- /web3/DOS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/DOS.md -------------------------------------------------------------------------------- /web3/Front_Running.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Front_Running.md -------------------------------------------------------------------------------- /web3/Reentrancy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Reentrancy.md -------------------------------------------------------------------------------- /web3/Short_Address_Attack.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Short_Address_Attack.md -------------------------------------------------------------------------------- /web3/Time_manipulation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Time_manipulation.md -------------------------------------------------------------------------------- /web3/Unchecked.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/yevh/VulnPlanet/HEAD/web3/Unchecked.md --------------------------------------------------------------------------------