SecureStackCo / actions-log4jLinks
A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
☆15Updated 3 years ago
Alternatives and similar repositories for actions-log4j
Users that are interested in actions-log4j are comparing it to the libraries listed below
Sorting:
- SecureStack Application Bill of Materials (ABOM/SBOM)☆13Updated 2 years ago
- A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition …☆22Updated 3 years ago
- Adding this GitHub Action will scan your repository for sensitive data in your source code. We find things like passwords, server host s…☆31Updated 2 years ago
- A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureS…☆24Updated 2 years ago
- All of our GitHub Actions rolled into one. Or as we like to say: One GitHub Action to rule them all!☆21Updated 2 years ago
- A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…☆24Updated 2 years ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆23Updated last month
- PoC: Python package static and dynamic analysis to detect environment variable stealing☆10Updated 4 years ago
- Attempt zone transfers on domains☆17Updated 3 years ago
- Scripts for Sourcegraph search results. Useful for static analysis <3☆28Updated last year
- Web application pentesting recon☆23Updated 4 years ago
- Automate your subdomain enumeration, subdomain takeover, management, nuclei, etc. in one go.☆10Updated 3 years ago
- Multithreaded Host Header Redirection Scanner☆13Updated 4 years ago
- Finds Documents On Cloud Assets Using grayhatwarfare API for short urls☆19Updated 3 years ago
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆13Updated 2 months ago
- GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environm…☆19Updated last year
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- This repository contains links to all the 100 days tweets that I posted during the #100DaysOfHacking challenge.☆15Updated 3 years ago
- Tool to find stored robots.txt files from the past☆18Updated 2 years ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆38Updated 3 years ago
- A tool to check for response status codes with ease☆14Updated 2 years ago
- ☆13Updated last year
- Maturity Model Collaborative project☆15Updated 2 years ago
- ☆16Updated 4 years ago
- An Exploitation script developed to exploit the CVE-2023-4966 bleed citrix information disclosure vulnerability☆8Updated last year
- Files and Folders list used in file enumeration during Bug Bounty☆12Updated 4 years ago
- ☆24Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 3 months ago
- Easy discovery of assets☆13Updated 3 years ago
- Extract domain from SSL Information☆13Updated 3 years ago