Alternatives and similar repositories for 44con-code-review-workshop

Users that are interested in 44con-code-review-workshop are comparing it to the libraries listed below

• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆23Updated 8 years ago
• riyazwalikar / injection-attacks-nosql-talk
  Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
  ☆23Updated 6 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 7 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆41Updated 7 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 6 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Updated 8 years ago
• ni8walk3r / JWT-Exploitation
  Collection of different exploitation scenarios of JWT.
  ☆21Updated 4 years ago
• agrawalsmart7 / otphacks
  ☆21Updated 6 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆51Updated 9 years ago
• no-sec-marko / java-web-vulnerabilities
  Plattform to develop and experiment with existing java web attacks.
  ☆31Updated 8 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• starhackerz / toriprotate
  Simple burp extension for routing traffic over tor. It instruments tor to switch to a new circuit after every N requests.
  ☆20Updated 3 years ago
• PortSwigger / detect-dynamic-js
  The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…
  ☆13Updated 7 years ago
• twelvesec / JDSer-DComp
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Updated 6 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆44Updated last year
• RUB-NDS / SAML-XXE-Test
  Simple XXE test suite generated specifically for SAML interfaces
  ☆22Updated 7 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• righettod / virtualhost-payload-generator
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Updated 8 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆34Updated 7 years ago
• 1N3 / CloudHunter
  Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them
  ☆36Updated 7 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆55Updated 6 years ago
• redtimmy / OAMBuster
  Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)
  ☆25Updated 6 years ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 6 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 5 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 6 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 9 years ago
• modzero / interestingFileScanner
  Burp extension
  ☆58Updated 7 years ago
• eur0pa / tko-subs
  A tool that can help detect and takeover subdomains with dead DNS records
  ☆12Updated 7 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆64Updated 2 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 7 years ago