Probely / security_checklist
Web Application Security Checklist
☆115Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for security_checklist
- OWASP Code Review Guide Web Repository☆121Updated 2 years ago
- Check any website (or set of websites) for insecure security headers.☆244Updated last year
- Weaponizing Live CT logs for automated monitoring of assets☆133Updated 3 years ago
- An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.☆180Updated last week
- The OWASP Secure Headers Project☆135Updated last week
- OWASP Foundation Web Respository☆64Updated last year
- Some good resources for getting started with application security☆135Updated 3 years ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆105Updated 2 weeks ago
- ☆75Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆61Updated last year
- The DevSecOps toolset for REST APIs☆270Updated last year
- A simple web app that helps developers understand the ASVS requirements.☆154Updated 8 months ago
- A collection of response templates for invalid bug bounty reports.☆90Updated 6 years ago
- Python script to check HTTP security headers☆59Updated 2 weeks ago
- Identify IP addresses owned by public cloud providers☆112Updated 4 months ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆168Updated 2 years ago
- ☆121Updated last year
- Brute force AWS bucket finder☆59Updated last year
- OWASP Foundation Project Web Repository for Secure Coding Practices Quick-reference Guide☆63Updated 5 months ago
- An application to catch, search and analyze HTTP secure headers.☆63Updated 3 years ago
- A Broken Application - Very Vulnerable!☆129Updated last week
- A very vulnerable implementation of a GraphQL API.☆57Updated 2 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆111Updated last year
- Repo to hold mapping of user-security-stories☆113Updated 5 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆104Updated 9 months ago
- Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.☆67Updated 2 years ago
- Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.☆96Updated 3 weeks ago
- A checklist of practices for organizations dealing with account takeover (ATO)☆263Updated last month
- GraphQL security testing tool☆117Updated 2 years ago
- GraphQL security workshop labs☆101Updated 4 months ago