Contrast-Security-OSS / Burptrast
Burp Plugin for Contrast Security
☆16Updated 6 months ago
Alternatives and similar repositories for Burptrast:
Users that are interested in Burptrast are comparing it to the libraries listed below
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆102Updated last year
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 8 months ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆63Updated 2 years ago
- Yet another open S3 bucket finder☆20Updated 7 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆64Updated last year
- ☆136Updated 2 years ago
- AWS Security Checks☆39Updated 7 years ago
- ☆36Updated 4 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆73Updated 3 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Scripts and tools for AWS Pentest☆53Updated 4 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 3 years ago
- Virtual Security Operations Center☆50Updated last year
- A simple file-based scanner to look for potential AWS access and secret keys in files☆91Updated last year
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆80Updated 2 years ago
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆38Updated 4 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆30Updated 2 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆113Updated 6 years ago
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.☆77Updated 4 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated last year
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- AWS SSO serverless phishing API.☆32Updated 3 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 6 years ago
- ☆90Updated 3 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- ☆28Updated 5 years ago
- jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.☆67Updated 5 years ago