DefectDojo / Burp-Plugin
A Burp plugin to export findings to DefectDojo
☆30Updated last year
Alternatives and similar repositories for Burp-Plugin:
Users that are interested in Burp-Plugin are comparing it to the libraries listed below
- A simple file-based scanner to look for potential AWS access and secret keys in files☆90Updated 11 months ago
- Python API library for DefectDojo☆41Updated last year
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Pivot into private VPC networks using a VPN connection☆41Updated 5 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆82Updated 4 years ago
- Scripts and tools for AWS Pentest☆51Updated 4 years ago
- AppSecPipeline Specification for DevOps automation.☆39Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆100Updated last year
- Jekyll Files for cloudsecwiki.com☆51Updated 3 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- AWS Security Checks☆36Updated 7 years ago
- Route53/CloudFront Vulnerability Assessment Utility☆85Updated last year
- An AWS Lambda vulnerable application written in flask.☆48Updated 7 years ago
- Scripts that we use for pentesting☆42Updated 7 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆135Updated 4 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 5 years ago
- A tool to enumerate S3 buckets manually or via certstream☆80Updated last year
- Ruby command-line interface to Burp Suite's REST API☆59Updated 4 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆62Updated last year
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆111Updated 5 years ago
- A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…☆39Updated 3 years ago
- A tool to evaluate Content Security Policies.☆70Updated 4 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆38Updated 6 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 2 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- Amazon bucket brute force tool☆96Updated 11 years ago
- Maturity Model Collaborative project☆14Updated last year
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 6 years ago
- AWS S3 Sensitive Data Search☆36Updated 3 years ago
- ☆22Updated 2 years ago