ManuelBerrueta/FlowAnalyzer external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ManuelBerrueta/FlowAnalyzer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ManuelBerrueta/FlowAnalyzer)

Close

ManuelBerrueta / FlowAnalyzerView on GitHubMore

• External links
• Readme badge

FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).

☆181Jul 8, 2024Updated last year

Alternatives and similar repositories for FlowAnalyzer

Users that are interested in FlowAnalyzer are comparing it to the libraries listed below

• nodyhub / zipslipper

  View on GitHub
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Sep 20, 2024Updated last year
• huntresslabs / rogueapps

  View on GitHub
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆84Jan 30, 2026Updated last month
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• intrudir / burpcollaborator-docker

  View on GitHub
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆30Nov 30, 2025Updated 3 months ago
• usdAG / FlowMate

  View on GitHub
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆165Oct 28, 2025Updated 4 months ago
• AndreySokolov247 / XSS-AGENT

  View on GitHub
  Autonomous AI C2
  ☆33Jul 23, 2024Updated last year
• ofirc / k8s-sniff-https

  View on GitHub
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆75Apr 14, 2025Updated 10 months ago
• vectra-ai-research / Halberd

  View on GitHub
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆334Jan 12, 2026Updated last month
• GoogleCloudPlatform / assured-workloads-terraform

  View on GitHub
  ☆18Jul 30, 2024Updated last year
• singe / tidcli

  View on GitHub
  A simple touchID prompt'er for use in shell scripts.
  ☆99Jun 18, 2024Updated last year
• NetSPI / gcpwn

  View on GitHub
  Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…
  ☆287May 16, 2025Updated 9 months ago
• noperator / chromedb

  View on GitHub
  Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.
  ☆137May 7, 2025Updated 9 months ago
• RedByte1337 / GraphSpy

  View on GitHub
  Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
  ☆1,033Dec 31, 2025Updated 2 months ago
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• bullfrogsec / bullfrog

  View on GitHub
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆117Feb 25, 2026Updated last week
• offensive-actions / terraform-provider-statefile-rce

  View on GitHub
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆62Jan 25, 2025Updated last year
• referefref / modpot

  View on GitHub
  Modular web-application honeypot platform built using go and gin
  ☆63May 8, 2024Updated last year
• praetorian-inc / gato

  View on GitHub
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆733Sep 17, 2025Updated 5 months ago
• adeptex / whispers

  View on GitHub
  Identify hardcoded secrets in static structured text (version 2)
  ☆98Feb 5, 2025Updated last year
• mosesrenegade / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆60Nov 6, 2023Updated 2 years ago
• jstawinski / GitHub-Actions-Attack-Diagram

  View on GitHub
  ☆192Apr 16, 2025Updated 10 months ago
• lukesudom / revelio-scan

  View on GitHub
  A powerful containerized tool that automatically downloads, extracts, and scans packages from PyPI and npm for embedded secrets, API keys…
  ☆18Jul 25, 2025Updated 7 months ago
• xforcered / ADOKit

  View on GitHub
  Azure DevOps Services Attack Toolkit
  ☆313Mar 15, 2025Updated 11 months ago
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• dwisiswant0 / ipfuscator

  View on GitHub
  A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…
  ☆92Aug 25, 2023Updated 2 years ago
• adanalvarez / HoneyTrail

  View on GitHub
  Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
  ☆51Nov 16, 2024Updated last year
• notdls / known-breaches

  View on GitHub
  Daily updates from leaked data search engines, aggregators and similar services.
  ☆148Feb 26, 2026Updated last week
• silentsignal / SemGWT

  View on GitHub
  Semgrep rules to identify GWT attack surface
  ☆12Apr 28, 2022Updated 3 years ago
• C0DEbrained / Burp-Montoya-Utilities

  View on GitHub
  A collection of utilities for building extensions using Burp's Montoya API
  ☆52Nov 8, 2025Updated 3 months ago
• r0binak / MTKPI

  View on GitHub
  🧰 Multi Tool Kubernetes Pentest Image
  ☆254Sep 1, 2025Updated 6 months ago
• silascutler / dockerhoneypot-logs

  View on GitHub
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Sep 30, 2024Updated last year
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆27Jan 6, 2026Updated last month
• referefref / gitdoorcheck

  View on GitHub
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆73Mar 1, 2024Updated 2 years ago
• nccgroup / SteppingStones

  View on GitHub
  A Red Team Activity Hub
  ☆234Feb 25, 2026Updated last week
• cosad3s / postleaks

  View on GitHub
  Search for sensitive data in Postman public library.
  ☆214Aug 28, 2025Updated 6 months ago
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆146Jun 18, 2024Updated last year
• kulkansecurity / gitxray

  View on GitHub
  A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.
  ☆173Jan 9, 2026Updated last month
• Slowerzs / ThievingFox

  View on GitHub
  ☆568Mar 28, 2024Updated last year
• doyensec / PESD-Exporter-Extension

  View on GitHub
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆107Jan 30, 2025Updated last year