RUB-NDS / PrOfESSOS
PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach to improve the security of OpenID Connect implementations by systematically detecting vulnerabilities.
☆27Updated last year
Related projects: ⓘ
- ☆27Updated 2 years ago
- An extension for BurpSuite that highlights SSO messages in Burp's proxy window..☆116Updated 3 years ago
- Index all certificates from certificate transparancy into Elasticsearch☆23Updated 6 years ago
- OAuth plugin for Burp Suite Extender☆42Updated 6 years ago
- Open Security Summit 2018☆28Updated 3 years ago
- A PoC that shows that Web Vulnerabilities can indeed be interesting☆19Updated 6 years ago
- Simple XXE test suite generated specifically for SAML interfaces☆21Updated 6 years ago
- WebBorer is a directory-enumeration tool written in Go.☆44Updated last year
- Go static analysis tool that checks for security issues using an AST.☆28Updated 5 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆57Updated 2 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆60Updated 5 years ago
- Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices☆18Updated 7 years ago
- OAuth Security Cheatsheet☆39Updated 10 years ago
- Viewstate Hidden Control Enumerator☆17Updated 11 years ago
- JMSDigger is JMS API basedEnterprise Messaging Application assessment tool☆31Updated 10 years ago
- Jaqen - Simple DNS rebinding☆70Updated 6 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 5 years ago
- Compares the TLS configuration of a web server to the Mozilla TLS Profiles☆25Updated 10 months ago
- sslxray is an SSL/TLS scanning tool designed to detect a wide range of issues☆25Updated 6 years ago
- Vendor-Neutral Security Tool Automation Controller (over REST)☆29Updated 5 years ago
- The SSH Multiplex Backdoor Tool☆62Updated 4 years ago
- Tool orchestrator. Specify targets and run sets of tools against them.☆19Updated 8 years ago
- ☆32Updated 9 years ago
- ☆22Updated this week
- Zone transfers for rwhois☆20Updated 5 years ago
- Overview about existing tools that can be useful for AWS auditing purposes.☆15Updated 6 years ago
- Simple trick to increase readability of exceptions raised by Burp extensions written in Python☆42Updated 7 years ago
- ☆25Updated 3 years ago
- A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.☆25Updated 9 years ago
- ☆10Updated this week