JordanMilne / Advocate
An SSRF-preventing wrapper around Python's requests library. Advocate is no longer maintained, please fork and rename if you would like to continue work on it.
☆93Updated last year
Alternatives and similar repositories for Advocate:
Users that are interested in Advocate are comparing it to the libraries listed below
- The databases, API's and managers behind https://websecweekly.org☆50Updated 9 years ago
- SSRF Protection Library for PHP - http://safecurl.fin1te.net☆73Updated last year
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- Fuzzing things with afl and python-afl☆59Updated 8 years ago
- A Scaleable and Asynchronous Framework for Testing Tools built on Kubernetes☆35Updated 7 years ago
- Monitor arbitrary TCP traffic using your HTTP interception proxy of choice☆48Updated 7 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 4 years ago
- ☆32Updated 9 years ago
- A security tool to fingerprint PNG libraries used by web applications☆80Updated 5 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆164Updated last year
- Resources for developers and security engineers to learn the ropes of application security☆97Updated 6 years ago
- An example of a vulnerable slack bot that runs in AWS lambda.☆19Updated 7 years ago
- A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.☆42Updated 7 years ago
- badbucket checks your s3 bucket for common misconfigurations☆23Updated 7 years ago
- An SSRF-preventing wrapper around Node's request module☆26Updated 6 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 7 years ago
- Viewstate Hidden Control Enumerator☆17Updated 11 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- Jaqen - Simple DNS rebinding☆73Updated 6 years ago
- Files from Zeronights presentation.☆28Updated 12 years ago
- Code execution via Python package installation.☆169Updated 6 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago
- A library for classifying strings as potential secrets.☆63Updated 3 years ago
- A tool to surface security issues in python code☆226Updated 7 years ago
- ☆11Updated 8 years ago
- A Firefox extension and WebSocket handler that checks S3/Google/Azure buckets while your browse.☆37Updated 4 years ago
- ☆25Updated 7 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago