Probely / security_checklist

Related projects ⓘ

Alternatives and complementary repositories for security_checklist

• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆121Updated 2 years ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆244Updated last year
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 3 years ago
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆180Updated last week
• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆135Updated last week
• OWASP / www-project-security-knowledge-framework
  OWASP Foundation Web Respository
  ☆64Updated last year
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆135Updated 3 years ago
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆105Updated 2 weeks ago
• secdec / attack-surface-detector-cli
  ☆75Updated 2 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆61Updated last year
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆270Updated last year
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆154Updated 8 months ago
• EdOverflow / bug-bounty-responses
  A collection of response templates for invalid bug bounty reports.
  ☆90Updated 6 years ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆59Updated 2 weeks ago
• nccgroup / cloud_ip_ranges
  Identify IP addresses owned by public cloud providers
  ☆112Updated 4 months ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆168Updated 2 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆121Updated last year
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆59Updated last year
• OWASP / www-project-secure-coding-practices-quick-reference-guide
  OWASP Foundation Project Web Repository for Secure Coding Practices Quick-reference Guide
  ☆63Updated 5 months ago
• oshp / headers
  An application to catch, search and analyze HTTP secure headers.
  ☆63Updated 3 years ago
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆129Updated last week
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆57Updated 2 years ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆111Updated last year
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆113Updated 5 years ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆104Updated 9 months ago
• PortSwigger / wordpress-scanner
  Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.
  ☆67Updated 2 years ago
• oshp / oshp-validator
  Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.
  ☆96Updated 3 weeks ago
• magoo / ato-checklist
  A checklist of practices for organizations dealing with account takeover (ATO)
  ☆263Updated last month
• szski / shapeshifter
  GraphQL security testing tool
  ☆117Updated 2 years ago
• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆101Updated 4 months ago