Morningstar / GoASQLinks
General Open Architecture Security Questionnaire
☆31Updated 2 years ago
Alternatives and similar repositories for GoASQ
Users that are interested in GoASQ are comparing it to the libraries listed below
Sorting:
- Custom Fortify SCA rules to detect common JSSE certification validation flaws☆11Updated 9 years ago
- Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.☆144Updated 8 years ago
- Automated SonarQube☆72Updated 6 years ago
- A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use☆14Updated 6 years ago
- Vendor-Neutral Security Tool Automation Controller (over REST)☆28Updated 6 years ago
- Automate security tests using Burp Suite.☆229Updated last year
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 8 years ago
- Web Input Vector Extractor Teaser☆132Updated 3 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆123Updated 7 years ago
- A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications☆72Updated 10 years ago
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆55Updated 8 years ago
- Snort rules☆35Updated 6 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 7 years ago
- ☆71Updated 7 years ago
- Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java☆55Updated 9 years ago
- The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch☆114Updated 4 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆138Updated 5 years ago
- WAF Research☆180Updated 3 years ago
- PoC for CVE-2018-1002105.☆223Updated 6 years ago
- Burp scanner plugin based on Vulners.com vulnerability database☆25Updated 8 years ago
- A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity☆21Updated last year
- Burp extension to help developers replicate findings from pen tests☆70Updated last year
- Tool for checking Whether a domain or its multiple sub-domains are up and running.☆72Updated 6 years ago
- ☆46Updated 9 years ago
- Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls☆42Updated 9 years ago
- Tools for conducting analysis of CVE data in Elasticsearch☆74Updated 2 weeks ago
- RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler☆20Updated 11 years ago
- ArmourBird CSF - Container Security Framework☆44Updated 3 years ago
- Burp Suite plugin which implement PyJFuzz for fuzzing web application.☆56Updated 8 years ago
- Baseline IoT security checklist. Consider security as early in development as possible and reap the rewards.☆30Updated 7 years ago