RUB-NDS / PrOfESSOS
PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach to improve the security of OpenID Connect implementations by systematically detecting vulnerabilities.
☆28Updated 2 years ago
Alternatives and similar repositories for PrOfESSOS:
Users that are interested in PrOfESSOS are comparing it to the libraries listed below
- ☆30Updated 2 years ago
- Open Security Summit 2018☆29Updated 4 years ago
- Scripts that we use for pentesting☆42Updated 8 years ago
- Go static analysis tool that checks for security issues using an AST.☆28Updated 6 years ago
- ☆32Updated 9 years ago
- OAuth plugin for Burp Suite Extender☆42Updated 6 years ago
- An extension for BurpSuite that highlights SSO messages in Burp's proxy window..☆117Updated 4 years ago
- Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices☆18Updated 8 years ago
- A PoC that shows that Web Vulnerabilities can indeed be interesting☆20Updated 7 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 5 years ago
- Index all certificates from certificate transparancy into Elasticsearch☆23Updated 7 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Burp Suite extension to help make Graphql request more readable☆31Updated 7 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆61Updated 6 years ago
- ☆38Updated 4 years ago
- Simple XXE test suite generated specifically for SAML interfaces☆22Updated 6 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆15Updated 8 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…☆24Updated 2 years ago
- WebBorer is a directory-enumeration tool written in Go.☆44Updated 2 years ago
- Checklist and tools for increasing security of Apache Airflow☆32Updated 4 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- Externalize Java application access to protected resources as log messages.☆41Updated 2 weeks ago
- .NET Deserialization Passive Scanner☆45Updated 7 years ago
- Vulnerability Assessment and Auditing Framework for all the Crypto Implementations.☆37Updated 8 years ago
- Demo server for testing Java deserialization payloads☆15Updated 8 years ago
- Advanced Vulnerable Web Application (AVWA)☆14Updated 7 years ago
- ☆12Updated 8 years ago
- Lightweight and extensible horizontal vulnerability scanner☆11Updated 2 years ago