The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
☆14Feb 10, 2022Updated 4 years ago
Alternatives and similar repositories for attack-surface-detector
Users that are interested in attack-surface-detector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Interrogate your GitHub resources with the help of the world's greatest detectives: Powerpipe + Steampipe + Sherlock.☆41Mar 25, 2026Updated 3 months ago
- Easily write tests and fuzz many different programs.☆12Dec 13, 2022Updated 3 years ago
- scripts to setup pentesting system and use during pentest☆21Jun 1, 2022Updated 4 years ago
- This contains the contents needed to deploy a home lab in VirtualBox.☆18Jul 6, 2020Updated 5 years ago
- (Unofficial) Ruby wrapper for the Bugcrowd HTTP API☆14Feb 27, 2017Updated 9 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Download all the HIBP passwords☆12Apr 6, 2023Updated 3 years ago
- Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.☆17Jan 5, 2026Updated 5 months ago
- GDB plug-in based on PWNDBG, GEF and PEDA that makes debugging MIPS with GDB suck less☆16Sep 18, 2024Updated last year
- Proof of Concept files for SensePost's blog - Painless intro to the linux userland heap☆22Aug 15, 2017Updated 8 years ago
- ☆12Jan 6, 2023Updated 3 years ago
- ☆28Jan 31, 2025Updated last year
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆102Sep 10, 2019Updated 6 years ago
- ☆99Apr 2, 2026Updated 2 months ago
- Designed for automated enumeration for ethical hacking and penetration testing☆11Jan 17, 2018Updated 8 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- S3 Buckets that will let you list all files inside them☆14Apr 26, 2018Updated 8 years ago
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆94Feb 10, 2022Updated 4 years ago
- Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …☆70Jun 12, 2026Updated 2 weeks ago
- PowerShell script to perform a REST API query to get IP address geo-location information☆15Oct 21, 2018Updated 7 years ago
- Wmap ("Web Mapper") Information gathering for web hacking.☆14Dec 3, 2014Updated 11 years ago
- Ed is a tool used to identify and exploit accessible UNIX Domain Sockets☆27Mar 11, 2019Updated 7 years ago
- Repository of Volatility3 plugins☆23Mar 22, 2023Updated 3 years ago
- OAuth 2.0 exploitation, attack and research tools.☆13Jan 20, 2024Updated 2 years ago
- GenZ Shellcode Generator to execute commands with winExec API☆22Apr 27, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Simple SSH server that serves anonymous git repositories (read-only)☆11Oct 18, 2018Updated 7 years ago
- An Erlang library wrapping AES-GCM (AEAD) crypto in a Fernet-like interface☆29Jan 22, 2021Updated 5 years ago
- DRAKVUF Black-box Binary Analysis☆15Feb 26, 2026Updated 4 months ago
- Documentation and Support for AttackForge ReportGen☆22Jul 26, 2025Updated 11 months ago
- Simple python wrapper for the Robtex API (see https://www.robtex.com/api/).☆13Apr 17, 2021Updated 5 years ago
- chut is a simple command line executable to mute, decrease/increase system volume (Mac OS X)☆16Jun 29, 2022Updated 4 years ago
- ☆16Apr 16, 2015Updated 11 years ago
- A curated list of the more mature AI tools for enhancing developer productivity☆37Jan 19, 2026Updated 5 months ago
- ☆16Jul 30, 2017Updated 8 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Pentesting notes☆19Apr 30, 2026Updated 2 months ago
- DBGBench Website:☆19Feb 24, 2021Updated 5 years ago
- Writeup of CVE-2017-1002101 with sample "exploit"/escape☆35Mar 23, 2018Updated 8 years ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆71Feb 4, 2022Updated 4 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆80Mar 23, 2020Updated 6 years ago
- BinCrowd Plugin for IDA Pro☆44Jan 10, 2012Updated 14 years ago
- 12-week Geekwise course on web application security and hardening.☆17Mar 19, 2020Updated 6 years ago