Orange-Cyberdefense / grepmarxLinks
A source code static analysis platform for AppSec enthusiasts.
☆252Updated 4 months ago
Alternatives and similar repositories for grepmarx
Users that are interested in grepmarx are comparing it to the libraries listed below
Sorting:
- Black box fuzzer for web applications☆427Updated 11 months ago
- Find CVE PoCs on GitHub☆147Updated last year
- Source Code Management Attack Toolkit☆219Updated 2 years ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 3 months ago
- Hourly updated database of exploit and exploitation reports☆254Updated 5 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆207Updated 2 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆162Updated 7 months ago
- JMX enumeration and attacking tool.☆443Updated 3 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆295Updated last year
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆384Updated last week
- ☆196Updated 7 months ago
- Subdomains analysis and generation tool. Reveal the hidden!☆240Updated 2 weeks ago
- Kubernetes exploitation tool☆360Updated 10 months ago
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆137Updated 2 weeks ago
- A Go-based Exploit Framework☆342Updated this week
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated last year
- RCE exploit for CVE-2023-3519☆224Updated last year
- Repository to store exploits created by Assetnotes Security Research team☆178Updated last year
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆174Updated 7 months ago
- A GraphQL enumeration and extraction tool☆131Updated 2 years ago
- A library for detecting known secrets across many web frameworks☆651Updated this week
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆401Updated 5 months ago
- ☆293Updated 10 months ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆421Updated 7 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆71Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- Chat automates Nuclei template generation☆108Updated last year
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆371Updated 2 months ago
- WebSocket REPL for pentesters☆220Updated 11 months ago
- PoC_CVEs☆163Updated 2 weeks ago