PortSwigger / attack-surface-detectorLinks
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
☆14Updated 3 years ago
Alternatives and similar repositories for attack-surface-detector
Users that are interested in attack-surface-detector are comparing it to the libraries listed below
Sorting:
- An AWS Lambda vulnerable application written in flask.☆49Updated 7 years ago
- Scripts that we use for pentesting☆42Updated 8 years ago
- Simple trick to increase readability of exceptions raised by Burp extensions written in Python☆46Updated 8 years ago
- Burp Extension for AWS Signing☆89Updated 8 months ago
- ☆29Updated 8 years ago
- WStalker: an easy proxy☆25Updated 5 years ago
- OAuth Security Cheatsheet☆40Updated 11 years ago
- Pivot into private VPC networks using a VPN connection☆43Updated 5 years ago
- Zone transfers for rwhois☆20Updated 6 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- Alphanumeric Encoder☆25Updated 6 years ago
- Capture all RabbitMQ messages being sent through a broker.☆32Updated 4 years ago
- Docker Version of Aquatone☆14Updated 7 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- An Evil OIDC Server☆54Updated 2 years ago
- ☆36Updated 5 years ago
- API testing tool written with Python☆56Updated 8 years ago
- Simple S3 Bucket Testing Software☆31Updated 3 years ago
- Notes as I learn basic AWS penetration testing☆67Updated 6 years ago
- The SSH Multiplex Backdoor Tool☆65Updated 5 years ago
- Report and finding templates used by the Serpico reporting tool☆16Updated 7 years ago
- OAuth 2.0 Dynamic Security Scanner☆33Updated 4 years ago
- Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.☆28Updated 2 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- Testing tools for Oracle Forms☆45Updated 2 years ago
- ☆36Updated 5 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆12Updated 3 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- Forked and updated with some additional features over the original☆17Updated 4 years ago