Orange-Cyberdefense / grepmarx
A source code static analysis platform for AppSec enthusiasts.
☆241Updated last month
Alternatives and similar repositories for grepmarx:
Users that are interested in grepmarx are comparing it to the libraries listed below
- Black box fuzzer for web applications☆425Updated 9 months ago
- Find CVE PoCs on GitHub☆147Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆260Updated last month
- A rapid HTTP downgrade smuggling scanner written in Go.☆254Updated 11 months ago
- Subdomains analysis and generation tool. Reveal the hidden!☆237Updated last month
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆156Updated 5 months ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆372Updated this week
- Repository to store exploits created by Assetnotes Security Research team☆177Updated last year
- JMX enumeration and attacking tool.☆431Updated 3 weeks ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆205Updated this week
- Secrets scanner that understands code☆139Updated last month
- ☆188Updated 5 months ago
- Source Code Management Attack Toolkit☆215Updated 2 years ago
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆311Updated 2 weeks ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated 11 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆64Updated 11 months ago
- Kraken, a modular multi-language webshell coded by @secu_x11☆538Updated last year
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆173Updated 5 months ago
- Automated learning of regexes for DNS discovery☆364Updated 2 years ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆156Updated 4 months ago
- A GraphQL enumeration and extraction tool☆131Updated 2 years ago
- Nuclei AI - Browser Extension for Rapid Nuclei Template Generation☆507Updated 4 months ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆93Updated 10 months ago
- ☆406Updated 2 years ago
- Web dashboard for Interactsh client☆210Updated last week
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆141Updated last year
- Text4Shell scanner for Burp Suite☆189Updated 2 years ago
- Session Hijacking Visual Exploitation☆198Updated last year
- RCE exploit for CVE-2023-3519☆223Updated last year
- PoC_CVEs☆162Updated 2 weeks ago