Orange-Cyberdefense / grepmarxLinks
A source code static analysis platform for AppSec enthusiasts.
☆257Updated 6 months ago
Alternatives and similar repositories for grepmarx
Users that are interested in grepmarx are comparing it to the libraries listed below
Sorting:
- Find CVE PoCs on GitHub☆151Updated 3 weeks ago
- Black box fuzzer for web applications☆432Updated last month
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆274Updated 5 months ago
- Secrets scanner that understands code☆149Updated 6 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆306Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆163Updated this week
- Hourly updated database of exploit and exploitation reports☆260Updated 7 months ago
- Repository to store exploits created by Assetnotes Security Research team☆182Updated last year
- gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications☆229Updated 6 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆163Updated 8 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆209Updated 4 months ago
- Session Hijacking Visual Exploitation☆203Updated last year
- Subdomains analysis and generation tool. Reveal the hidden!☆243Updated 2 months ago
- Vulnerable environments paired with ready-to-use Nuclei templates for security testing and learning! 🚀☆108Updated 3 weeks ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated last year
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆104Updated 3 months ago
- WebSocket REPL for pentesters☆223Updated last year
- Web dashboard for Interactsh client☆225Updated 2 months ago
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆138Updated 2 months ago
- PoC_CVEs☆163Updated last month
- CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef☆247Updated this week
- Zero-dollar attack surface management tool☆296Updated last year
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆401Updated last week
- A lightweight GPT model, trained to discover subdomains.☆277Updated this week
- A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities☆119Updated last year
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆422Updated 2 weeks ago
- CVE-2023-33733 reportlab RCE☆120Updated last year
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆280Updated last year
- Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…☆98Updated 2 months ago
- A GraphQL enumeration and extraction tool☆132Updated 2 years ago