Bearer / bearer-rules
Rules for Bearer SAST
☆23Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for bearer-rules
- Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…☆15Updated last year
- Argument Injection in Dragonfly Ruby Gem☆16Updated 3 years ago
- Postman Integration is an extension for burp to generate Postman collection fomat json file.☆19Updated 2 years ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated last year
- WAF bypass PoC☆43Updated last year
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- Static Token And Credential Scanner☆95Updated last year
- My custom semgrep rules☆18Updated 4 years ago
- Docker container for running OWASP WebGoat.NET application☆11Updated 6 years ago
- Proof of Concepts for unsafe deserialization in Ruby☆12Updated 3 weeks ago
- ☆69Updated 3 years ago
- Dependency Combobulator☆88Updated 10 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆49Updated 6 months ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆21Updated 4 months ago
- Fast, simple library in Go to fetch CVEs from the National Vulnerability Database feeds☆25Updated last year
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆29Updated 2 years ago
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆11Updated last year
- CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion☆17Updated 3 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 2 years ago
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated last year
- DNS resolver pools written in Go☆41Updated 2 months ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆17Updated last year
- gozero: the wannabe zero dependency runtime for Go developers (experimental)☆18Updated 2 weeks ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Updated 3 years ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆44Updated 2 years ago
- Hacking Artifactory with server side template injection☆51Updated 4 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆14Updated 6 years ago
- BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.☆63Updated 2 weeks ago