Orange-Cyberdefense / grepmarx
A source code static analysis platform for AppSec enthusiasts.
☆238Updated last month
Alternatives and similar repositories for grepmarx:
Users that are interested in grepmarx are comparing it to the libraries listed below
- Find CVE PoCs on GitHub☆145Updated last year
- Black box fuzzer for web applications☆426Updated 8 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆203Updated 2 months ago
- Source Code Management Attack Toolkit☆214Updated 2 years ago
- JMX enumeration and attacking tool.☆422Updated last week
- Subdomains analysis and generation tool. Reveal the hidden!☆237Updated 3 weeks ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆253Updated 10 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆258Updated 2 weeks ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆370Updated this week
- PoC_CVEs☆162Updated 3 weeks ago
- Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpick…☆109Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆156Updated 4 months ago
- ☆406Updated 2 years ago
- Repository to store exploits created by Assetnotes Security Research team☆176Updated last year
- Session Hijacking Visual Exploitation☆197Updated last year
- Damn Vulnerable Thick Client App developed in C# .NET☆149Updated last year
- Kraken, a modular multi-language webshell coded by @secu_x11☆538Updated last year
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆155Updated 4 months ago
- Kubernetes exploitation tool☆361Updated 8 months ago
- Secrets scanner that understands code☆139Updated last month
- A library for detecting known secrets across many web frameworks☆605Updated last week
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆132Updated 3 weeks ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆132Updated 10 months ago
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆63Updated 10 months ago
- Text4Shell scanner for Burp Suite☆189Updated 2 years ago
- Link sources to sinks in C# applications.☆143Updated last year
- RCE exploit for CVE-2023-3519☆223Updated last year
- Chat automates Nuclei template generation☆106Updated last year
- A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.☆208Updated 2 years ago