RefactorSecurity / vscode-security-notesLinks
Create notes during a security code review in VSCode ๐ Import your favorite SAST tool findings ๐ ๏ธ and collaborate with others ๐ค
โ133Updated 2 months ago
Alternatives and similar repositories for vscode-security-notes
Users that are interested in vscode-security-notes are comparing it to the libraries listed below
Sorting:
- โ111Updated 2 years ago
- boostsecurityio/lotpโ126Updated 2 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsโ105Updated 4 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRFโ58Updated last year
- Manager of third-party sources of Semgrep rules ๐โ87Updated 11 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.โ41Updated last year
- truffleproc โ hunt secrets in process memory (TruffleHog & gdb mashup)โ119Updated last year
- ๐๏ธ STRIDE vs. ASVS equivalence tableโ76Updated 10 months ago
- โ184Updated 2 months ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.โ93Updated last year
- Blogpost series showcasing interesting cloud - web app security bugsโ49Updated 2 years ago
- HASH (HTTP Agnostic Software Honeypot)โ138Updated last year
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbiโฆโ251Updated last month
- Protect against subdomain takeoverโ92Updated last year
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderโ139Updated 3 years ago
- A public cloud security knowledgebase - https://www.secwiki.cloud/โ51Updated 7 months ago
- โ115Updated 2 years ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesโ220Updated 2 weeks ago
- โ196Updated 7 months ago
- โ47Updated last year
- โ179Updated 2 months ago
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpointsโ117Updated last year
- โ127Updated 11 months ago
- Semgrep-based Policy Controller for Kubernetesโ47Updated 2 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalationโ106Updated last year
- GCP GOAT is the vulnerable application for learn the GCP Securityโ64Updated last month
- ๐งช Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.โ39Updated 6 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.โ261Updated 3 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where wโฆโ108Updated 7 months ago
- An extension to use Semgrep inside Burp Suite.โ89Updated last month