# Web Application Testing References ## Vulnerable Servers There are a series of vulnerable web applications that you can use to practice your skills in a safe environment. You can get more information about them in the [vulnerable_servers directory in this repository](https://github.com/The-Art-of-Hacking/art-of-hacking/tree/master/vulnerable_servers). ## A Few Popular Tools The following are a few popular tools that you learned in the video courses part of these series: * [Burp Suite](https://portswigger.net/burp) * [OWASP Zed Attack Proxy (ZAP)](https://github.com/zaproxy/zaproxy) * [sqlmap](http://sqlmap.org/) * [Paros Proxy](http://sectools.org/tool/paros/) * [httrack](https://www.httrack.com/) * [skipfish](https://code.google.com/archive/p/skipfish/) ## How to Integrate OWASP ZAP with Jenkins You can integrate ZAP with Jenkins and even automatically create Jira issues based on your findings. You can download the [ZAP plug in here](https://wiki.jenkins.io/display/JENKINS/zap+plugin). [This video](https://www.youtube.com/watch?v=mmHZLSffCUg) provides an overview of how to integrate ## Popular Commercial Tools * [Qualys Web Scanning](https://www.qualys.com/apps/web-app-scanning/) * [IBM Security AppScan](https://www.ibm.com/security/application-security/appscan) ## TONS of #AWESOME Web Security Resources * https://github.com/qazbnm456/awesome-web-security # AMAZING RESOURCES ABOUT WEB TECHNOLOGIES, FRAMEWORKS, PLATFORMS (hundreds of resources) ## Platforms - [Node.js](https://github.com/sindresorhus/awesome-nodejs) - JavaScript runtime built on Chrome's V8 JavaScript engine. - [Frontend Development](https://github.com/dypsilon/frontend-dev-bookmarks) - [iOS](https://github.com/vsouza/awesome-ios) - Mobile operating system for Apple phones and tablets. - [Android](https://github.com/JStumpp/awesome-android) - [IoT & Hybrid Apps](https://github.com/weblancaster/awesome-IoT-hybrid) - [Electron](https://github.com/sindresorhus/awesome-electron) - Cross-platform native desktop apps using JavaScript/HTML/CSS. - [Cordova](https://github.com/busterc/awesome-cordova) - JavaScript API for hybrid apps. - [React Native](https://github.com/jondot/awesome-react-native) - [Xamarin](https://github.com/benoitjadinon/awesome-xamarin) - Mobile app development IDE, testing, and distribution. - [Linux](https://github.com/aleksandar-todorovic/awesome-linux) - [Containers](https://github.com/Friz-zy/awesome-linux-containers) - [macOS](https://github.com/iCHAIT/awesome-macOS) - [Command-Line](https://github.com/herrbischoff/awesome-osx-command-line) - [Screensavers](https://github.com/aharris88/awesome-macos-screensavers) - [watchOS](https://github.com/yenchenlin/awesome-watchos) - Operating system for the Apple Watch. - [JVM](https://github.com/deephacks/awesome-jvm) - [Salesforce](https://github.com/mailtoharshit/awesome-salesforce) - [Amazon Web Services](https://github.com/donnemartin/awesome-aws) - [Windows](https://github.com/Awesome-Windows/Awesome) - [IPFS](https://github.com/ipfs/awesome-ipfs) - P2P hypermedia protocol. - [Fuse](https://github.com/vinkla/awesome-fuse) - Mobile development tools. - [Heroku](https://github.com/ianstormtaylor/awesome-heroku) - Cloud platform as a service. - [Raspberry Pi](https://github.com/thibmaek/awesome-raspberry-pi) - Credit card-sized computer aimed at teaching kids programming, but capable of a lot more. - [Qt](https://github.com/JesseTG/awesome-qt) - Cross-platform GUI app framework. - [WebExtensions](https://github.com/bfred-it/Awesome-WebExtensions) - Cross-browser extension system. - [RubyMotion](https://github.com/motion-open-source/awesome-rubymotion) - Write cross-platform native apps for iOS, Android, macOS, tvOS, and watchOS in Ruby. - [Smart TV](https://github.com/vitalets/awesome-smart-tv) - Create apps for different TV platforms. - [GNOME](https://github.com/Kazhnuz/awesome-gnome) - Simple and distraction-free desktop environment for Linux. ## Programming Languages - [JavaScript](https://github.com/sorrycc/awesome-javascript) - [Promises](https://github.com/wbinnssmith/awesome-promises) - [Standard Style](https://github.com/standard/awesome-standard) - Style guide and linter. - [Must Watch Talks](https://github.com/bolshchikov/js-must-watch) - [Tips](https://github.com/loverajoel/jstips) - [Network Layer](https://github.com/Kikobeats/awesome-network-js) - [Micro npm Packages](https://github.com/parro-it/awesome-micro-npm-packages) - [Mad Science npm Packages](https://github.com/feross/awesome-mad-science) - Impossible sounding projects that exist. - [Maintenance Modules](https://github.com/maxogden/maintenance-modules) - For npm packages. - [npm](https://github.com/sindresorhus/awesome-npm) - Package manager. - [AVA](https://github.com/avajs/awesome-ava) - Test runner. - [ESLint](https://github.com/dustinspecker/awesome-eslint) - Linter. - [Functional Programming](https://github.com/stoeffel/awesome-fp-js) - [Observables](https://github.com/sindresorhus/awesome-observables) - [npm scripts](https://github.com/RyanZim/awesome-npm-scripts) - Task runner. - [Swift](https://github.com/matteocrippa/awesome-swift) - [Education](https://github.com/hsavit1/Awesome-Swift-Education) - [Playgrounds](https://github.com/uraimo/Awesome-Swift-Playgrounds) - [Python](https://github.com/vinta/awesome-python) - [Asyncio](https://github.com/timofurrer/awesome-asyncio) - Asynchronous I/O in Python 3. - [Scientific Audio](https://github.com/faroit/awesome-python-scientific-audio) - Scientific research in audio/music. - [Rust](https://github.com/rust-unofficial/awesome-rust) - [Haskell](https://github.com/krispo/awesome-haskell) - [PureScript](https://github.com/passy/awesome-purescript) - [Go](https://github.com/avelino/awesome-go) - [Scala](https://github.com/lauris/awesome-scala) - [Ruby](https://github.com/markets/awesome-ruby) - [Events](https://github.com/planetruby/awesome-events) - [Clojure](https://github.com/razum2um/awesome-clojure) - [ClojureScript](https://github.com/hantuzun/awesome-clojurescript) - [Elixir](https://github.com/h4cc/awesome-elixir) - [Elm](https://github.com/isRuslan/awesome-elm) - [Erlang](https://github.com/drobakowski/awesome-erlang) - [Julia](https://github.com/svaksha/Julia.jl) - [Lua](https://github.com/LewisJEllis/awesome-lua) - [C](https://github.com/aleksandar-todorovic/awesome-c) - [C/C++](https://github.com/fffaraz/awesome-cpp) - [R](https://github.com/qinwf/awesome-R) - [D](https://github.com/zhaopuming/awesome-d) - [Common Lisp](https://github.com/CodyReichert/awesome-cl) - [Perl](https://github.com/hachiojipm/awesome-perl) - [Groovy](https://github.com/kdabir/awesome-groovy) - [Dart](https://github.com/yissachar/awesome-dart) - [Java](https://github.com/akullpp/awesome-java) - [RxJava](https://github.com/eleventigers/awesome-rxjava) - [Kotlin](https://github.com/KotlinBy/awesome-kotlin) - [OCaml](https://github.com/rizo/awesome-ocaml) - [ColdFusion](https://github.com/seancoyne/awesome-coldfusion) - [Fortran](https://github.com/rabbiabram/awesome-fortran) - [.NET](https://github.com/quozd/awesome-dotnet) - [Core](https://github.com/thangchung/awesome-dotnet-core) - [PHP](https://github.com/ziadoz/awesome-php) - [Composer](https://github.com/jakoch/awesome-composer) - Package manager. - [Delphi](https://github.com/Fr0sT-Brutal/awesome-delphi) - [Assembler](https://github.com/jaspergould/awesome-asm) - [AutoHotkey](https://github.com/ahkscript/awesome-AutoHotkey) - [AutoIt](https://github.com/J2TeaM/awesome-AutoIt) - [Crystal](https://github.com/veelenga/awesome-crystal) - [Frege](https://github.com/sfischer13/awesome-frege) - Haskell for the JVM. - [CMake](https://github.com/onqtam/awesome-cmake) - Build, test, and package software. - [ActionScript 3](https://github.com/robinrodricks/awesome-actionscript3) - Object-oriented language targeting Adobe AIR. - [Eta](https://github.com/sfischer13/awesome-eta) - Functional programming language for the JVM. - [Idris](https://github.com/joaomilho/awesome-idris) - General purpose pure functional programming language with dependent types influenced by Haskell and ML. ## Front-End Development - [ES6 Tools](https://github.com/addyosmani/es6-tools) - [Web Performance Optimization](https://github.com/davidsonfellipe/awesome-wpo) - [Web Tools](https://github.com/lvwzhen/tools) - [CSS](https://github.com/sotayamashita/awesome-css) - [Critical-Path Tools](https://github.com/addyosmani/critical-path-css-tools) - [Scalability](https://github.com/davidtheclark/scalable-css-reading-list) - [Must-Watch Talks](https://github.com/AllThingsSmitty/must-watch-css) - [Protips](https://github.com/AllThingsSmitty/css-protips) - [React](https://github.com/enaqx/awesome-react) - App framework. - [Relay](https://github.com/expede/awesome-relay) - Framework for building data-driven React apps. - [Web Components](https://github.com/mateusortiz/webcomponents-the-right-way) - [Polymer](https://github.com/Granze/awesome-polymer) - JavaScript library to develop Web Components. - [Angular](https://github.com/gdi2290/awesome-angular) - App framework. - [Backbone](https://github.com/sadcitizen/awesome-backbone) - App framework. - [HTML5](https://github.com/diegocard/awesome-html5) - Markup language used for websites & web apps. - [SVG](https://github.com/willianjusten/awesome-svg) - XML-based vector image format. - [Canvas](https://github.com/raphamorim/awesome-canvas) - [KnockoutJS](https://github.com/dnbard/awesome-knockout) - [Dojo Toolkit](https://github.com/petk/awesome-dojo) - [Inspiration](https://github.com/NoahBuscher/Inspire) - [Ember](https://github.com/nmec/awesome-ember) - App framework. - [Android UI](https://github.com/wasabeef/awesome-android-ui) - [iOS UI](https://github.com/cjwirth/awesome-ios-ui) - [Meteor](https://github.com/Urigo/awesome-meteor) - [BEM](https://github.com/sturobson/BEM-resources) - [Flexbox](https://github.com/afonsopacifer/awesome-flexbox) - [Web Typography](https://github.com/deanhume/typography) - [Web Accessibility](https://github.com/brunopulis/awesome-a11y) - [Material Design](https://github.com/sachin1092/awesome-material) - [D3](https://github.com/wbkd/awesome-d3) - Library for producing dynamic, interactive data visualizations. - [Emails](https://github.com/jonathandion/awesome-emails) - [jQuery](https://github.com/petk/awesome-jquery) - Easy to use JavaScript library for DOM manipulation. - [Tips](https://github.com/AllThingsSmitty/jquery-tips-everyone-should-know) - [Web Audio](https://github.com/notthetup/awesome-webaudio) - [Offline-First](https://github.com/pazguille/offline-first) - [Static Website Services](https://github.com/aharris88/awesome-static-website-services) - [A-Frame VR](https://github.com/aframevr/awesome-aframe) - Virtual reality for web browsers. - [Cycle.js](https://github.com/cyclejs-community/awesome-cyclejs) - Functional and reactive JavaScript framework. - [Text Editing](https://github.com/dok/awesome-text-editing) - [Motion UI Design](https://github.com/fliptheweb/motion-ui-design) - [Vue.js](https://github.com/vuejs/awesome-vue) - App framework. - [Marionette.js](https://github.com/sadcitizen/awesome-marionette) - App framework. - [Aurelia](https://github.com/behzad888/awesome-aurelia) - App framework. - [Charting](https://github.com/zingchart/awesome-charting) - [Ionic Framework 2](https://github.com/candelibas/awesome-ionic) - [Chrome DevTools](https://github.com/ChromeDevTools/awesome-chrome-devtools) - [PostCSS](https://github.com/jjaderg/awesome-postcss) - CSS tool. - [Draft.js](https://github.com/nikgraf/awesome-draft-js) - Rich text editor framework for React. - [Service Workers](https://github.com/TalAter/awesome-service-workers) - [Progressive Web Apps](https://github.com/TalAter/awesome-progressive-web-apps) - [choo](https://github.com/YerkoPalma/awesome-choo) - App framework. - [Redux](https://github.com/brillout/awesome-redux) - State container for JavaScript apps. - [webpack](https://github.com/webpack-contrib/awesome-webpack) - Module bundler. - [Browserify](https://github.com/ungoldman/awesome-browserify) - Module bundler. - [Sass](https://github.com/Famolus/awesome-sass) - CSS preprocessor. - [Ant Design](https://github.com/websemantics/awesome-ant-design) - Enterprise-class UI design language. - [Less](https://github.com/LucasBassetti/awesome-less) - CSS preprocessor. - [WebGL](https://github.com/sjfricke/awesome-webgl) - JavaScript API for rendering 3D graphics. - [Preact](https://github.com/ooade/awesome-preact) - App framework. - [Progressive Enhancement](https://github.com/jbmoelker/progressive-enhancement-resources) - [Next.js](https://github.com/unicodeveloper/awesome-nextjs) - Framework for server-rendered React apps. - [Hyperapp](https://github.com/hyperapp/awesome-hyperapp) - Tiny JavaScript library for building web apps. ## Back-End Development - [Django](https://github.com/rosarior/awesome-django) - [Flask](https://github.com/humiaozuzu/awesome-flask) - [Docker](https://github.com/veggiemonk/awesome-docker) - [Vagrant](https://github.com/iJackUA/awesome-vagrant) - [Pyramid](https://github.com/uralbash/awesome-pyramid) - [Play1 Framework](https://github.com/PerfectCarl/awesome-play1) - [CakePHP](https://github.com/friendsofcake/awesome-cakephp) - PHP framework. - [Symfony](https://github.com/sitepoint/awesome-symfony) - [Education](https://github.com/pehapkari/awesome-symfony-education) - [Laravel](https://github.com/chiraggude/awesome-laravel) - PHP framework. - [Education](https://github.com/fukuball/Awesome-Laravel-Education/blob/master/langs/en_US.md) - [Rails](https://github.com/ekremkaraca/awesome-rails) - Web app framework for Ruby. - [Gems](https://github.com/hothero/awesome-rails-gem) - Packages. - [Phalcon](https://github.com/phalcon/awesome-phalcon) - [Useful `.htaccess` Snippets](https://github.com/phanan/htaccess) - [nginx](https://github.com/fcambus/nginx-resources) - Web server. - [Dropwizard](https://github.com/stve/awesome-dropwizard) - [Kubernetes](https://github.com/ramitsurana/awesome-kubernetes) - [Lumen](https://github.com/unicodeveloper/awesome-lumen) - [Serverless Framework](https://github.com/JustServerless/awesome-serverless) - [Apache Wicket](https://github.com/PhantomYdn/awesome-wicket) - Java web app framework. - [Vert.x](https://github.com/vert-x3/vertx-awesome) - Toolkit for building reactive apps on the JVM. - [Terraform](https://github.com/shuaibiyy/awesome-terraform) - Tool for building, changing, and versioning infrastructure. ## Databases - [Database](https://github.com/numetriclabz/awesome-db) - [MySQL](https://github.com/shlomi-noach/awesome-mysql/blob/gh-pages/index.md) - [SQLAlchemy](https://github.com/dahlia/awesome-sqlalchemy) - [InfluxDB](https://github.com/mark-rushakoff/awesome-influxdb) - [Neo4j](https://github.com/neueda/awesome-neo4j) - [MongoDB](https://github.com/ramnes/awesome-mongodb) - NoSQL database. - [RethinkDB](https://github.com/d3viant0ne/awesome-rethinkdb) - [TinkerPop](https://github.com/mohataher/awesome-tinkerpop) - Graph computing framework. - [PostgreSQL](https://github.com/dhamaniasad/awesome-postgres) - Object-relational database. - [CouchDB](https://github.com/quangv/awesome-couchdb) - Document-oriented NoSQL database. - [HBase](https://github.com/rayokota/awesome-hbase) - Distributed, scalable, big data store. ## Content Management Systems - [Umbraco](https://github.com/leekelleher/awesome-umbraco) - [Refinery CMS](https://github.com/refinerycms-contrib/awesome-refinerycms) - Ruby on Rails CMS. - [Wagtail](https://github.com/springload/awesome-wagtail) - Django CMS focused on flexibility and user experience. - [Textpattern](https://github.com/drmonkeyninja/awesome-textpattern) - Lightweight PHP-based CMS. - [Drupal](https://github.com/nirgn975/awesome-drupal) - Extensible PHP-based CMS. - [Craft CMS](https://github.com/chasegiunta/awesome-craft) - Content-first CMS.