Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
☆293Jul 22, 2024Updated last year
Alternatives and similar repositories for dastardly-github-action
Users that are interested in dastardly-github-action are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A deliberately vulnerable website used to showcase Dastardly from Burp Suite☆10Oct 6, 2025Updated 5 months ago
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints☆12Jun 15, 2024Updated last year
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆58Jan 10, 2023Updated 3 years ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,099Updated this week
- Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…☆14Feb 6, 2022Updated 4 years ago
- ☆15Mar 21, 2025Updated last year
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆773Mar 12, 2026Updated last week
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Sep 27, 2023Updated 2 years ago
- Scripts/tools to destroy things☆17Sep 13, 2021Updated 4 years ago
- Yet Another SCA tool☆13Nov 10, 2022Updated 3 years ago
- ☆35Aug 2, 2022Updated 3 years ago
- Checks if files is accessible based on the source code.☆16Mar 13, 2024Updated 2 years ago
- Vulnerability Scan with Nuclei☆280Feb 14, 2026Updated last month
- Sarif exporter☆13Apr 23, 2024Updated last year
- Artwork for all official ZAP swag - posters, stickers, t-shirts etc☆14Mar 7, 2024Updated 2 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆61Apr 16, 2025Updated 11 months ago
- PoC and Detection for CVE-2024-21626☆76Feb 6, 2024Updated 2 years ago
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆27May 8, 2024Updated last year
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆142Feb 26, 2026Updated 3 weeks ago
- Tools for Attacking Pleasant Password Server☆23Sep 19, 2023Updated 2 years ago
- BurpSuite extension to convert requests into bcheck scripts☆33Jul 18, 2023Updated 2 years ago
- ☆27Mar 5, 2023Updated 3 years ago
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆173Jan 24, 2025Updated last year
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆81Oct 20, 2023Updated 2 years ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆867Nov 23, 2022Updated 3 years ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,744Feb 16, 2026Updated last month
- An extension to use Semgrep inside Burp Suite.☆88May 23, 2025Updated 10 months ago
- A tool to check the security settings of Github Organizations.☆75Feb 9, 2026Updated last month
- Security Champions Playbook v 2.1☆392Sep 25, 2023Updated 2 years ago
- Filter and enrich a list of subdomains by level☆210Sep 25, 2023Updated 2 years ago
- damn-exploitable-android-app-apk☆40Jun 9, 2023Updated 2 years ago
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆33Nov 12, 2025Updated 4 months ago
- Depstubber generates type-correct stubs for Go dependencies, for use in testing☆17Mar 21, 2025Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Nov 30, 2025Updated 3 months ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Dec 18, 2023Updated 2 years ago
- Audio Transcription for WhatsApp☆15Jun 28, 2024Updated last year
- GitHub CLI extension for working with CodeQL☆35Feb 14, 2025Updated last year
- IIS shortname scanner + bruteforce☆56Feb 18, 2024Updated 2 years ago
- mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swif…☆746Mar 12, 2026Updated last week