Web Application Security Checklist
☆134Apr 10, 2025Updated last year
Alternatives and similar repositories for security_checklist
Users that are interested in security_checklist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- All checklists☆27Mar 26, 2019Updated 7 years ago
- Penetration Testing Checklist☆36May 14, 2020Updated 6 years ago
- Probely's GitHub Action☆17Apr 8, 2025Updated last year
- Useful commands for pentesting Linux and Windows systems☆14Jul 18, 2020Updated 5 years ago
- Probely Agent for On-Premises Scans☆22Updated this week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- 🐞 Understand how cross-site scripting occurs, how to detect and exploit XSS vulnerabilities, giving you control of other visitor's brows…☆13Nov 24, 2025Updated 6 months ago
- ☆15Jan 27, 2022Updated 4 years ago
- ☆72Sep 18, 2020Updated 5 years ago
- A list of important security checks for GitHub individual and organization accounts☆16Jan 1, 2018Updated 8 years ago
- A full example report☆11Jul 23, 2019Updated 6 years ago
- Collection of useful command line commands☆14Dec 10, 2021Updated 4 years ago
- Check CPAN modules for known security vulnerabilities☆20Mar 9, 2026Updated 3 months ago
- Check whether a Government of Canada domain is adhering to best security practices.☆13Jan 21, 2021Updated 5 years ago
- Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application☆651Apr 10, 2020Updated 6 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆13Aug 1, 2023Updated 2 years ago
- An AWS Lambda Port Scanner and SSL expiry checker☆12Dec 4, 2016Updated 9 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆11Mar 18, 2019Updated 7 years ago
- Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"☆15May 15, 2024Updated 2 years ago
- A fast web services mass scanner 🕵🏻♂️☆56Apr 1, 2026Updated 2 months ago
- ☆15Dec 3, 2022Updated 3 years ago
- OWASP Application Security Verification Standard 4.0 Checklist☆33Apr 15, 2019Updated 7 years ago
- A powerful Burp Suite extension that automatically detects JavaScript URLs from HTTP traffic, scans them using TruffleHog for secrets det…☆32Oct 23, 2025Updated 7 months ago
- OWASP Foundation Web Respository☆24Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A collection of Burp Suite Lambda Filters ~ Bambdas☆31Oct 1, 2024Updated last year
- Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution☆20Sep 2, 2015Updated 10 years ago
- GitHub action to generate a CycloneDX SBOM for .NET☆12Jul 15, 2025Updated 10 months ago
- ☆19Jun 24, 2024Updated last year
- Ansible playbooks that will without any user interaction provision Check Point Security Management server (SM) or Multi-Domain Management…☆11Jan 28, 2022Updated 4 years ago
- checklist for testing the web applications☆291Feb 25, 2023Updated 3 years ago
- Find subdomains by searching public certificate records☆16Jun 11, 2024Updated 2 years ago
- ddos-checker is a tool used to perform a test on a website from a DDOS attack to find security gaps in a website.☆13Oct 16, 2025Updated 7 months ago
- Penetration Testing, Vulnerability Assessment and Red Team Learning☆135Apr 26, 2026Updated last month
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A tool to do basic fingerprinting across a large number of hosts☆11Oct 20, 2020Updated 5 years ago
- A Gradle plugin for checking whether an .apk or an .aar contains OpenSSL versions with known vulnerabilities☆13Nov 28, 2016Updated 9 years ago
- Scripts to check for security issues with SSH keys and authorized_keys files on Linux and other Unix-like operating systems.☆23Sep 29, 2025Updated 8 months ago
- IronWASP module to test security of SSL services. Ported from http://www.bolet.org/TestSSLServer/☆12Sep 2, 2013Updated 12 years ago
- Proof of concept code (which means poor code quality) for a proxy abusing unrestricted cross domain policies.☆23Aug 28, 2013Updated 12 years ago
- Exit if environment variables known to be used as access tokens are set.☆15May 30, 2022Updated 4 years ago
- Check for HTTP Security Headers☆14Aug 17, 2015Updated 10 years ago