SecureStackCo / actions-log4jLinks
A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
☆15Updated 3 years ago
Alternatives and similar repositories for actions-log4j
Users that are interested in actions-log4j are comparing it to the libraries listed below
Sorting:
- SecureStack Application Bill of Materials (ABOM/SBOM)☆13Updated 3 years ago
- A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition …☆22Updated 3 years ago
- Adding this GitHub Action will scan your repository for sensitive data in your source code. We find things like passwords, server host s…☆31Updated 2 years ago
- All of our GitHub Actions rolled into one. Or as we like to say: One GitHub Action to rule them all!☆21Updated 2 years ago
- A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureS…☆26Updated 2 years ago
- GCP Audit checks projects in Google Cloud for compliance with CIS Benchmarks☆26Updated 3 months ago
- Scripts for Sourcegraph search results. Useful for static analysis <3☆28Updated 2 years ago
- Dependency Combobulator☆93Updated last year
- Burp plugin for the 1Password session protocol for use by security researchers.☆70Updated 2 months ago
- Jumpstart multiple WebSocket servers quickly☆31Updated 3 years ago
- InfoSec OpenAI Examples☆19Updated last year
- ☆42Updated 4 months ago
- Go module that returns supported regions for a service or supported services for a region☆16Updated last year
- Security Work and Manual Reviews facilitated by Open Source Technology Improvement Fund, aka OSTIF☆33Updated last month
- GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environm…☆20Updated 2 years ago
- An python script that use apkleaks to scan the android application over web☆11Updated 3 years ago
- WAF bypass PoC☆48Updated last year
- Manage attack surface data on Elasticsearch☆22Updated last year
- A python network scanner using scapy☆23Updated 5 years ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆31Updated 3 months ago
- ☆24Updated 2 years ago
- Fast and passive subdomain enumeration.☆17Updated 3 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Updated 2 years ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆39Updated 3 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- An AIO Tool to check for Vulnerable Amazon S3 Buckets as part of Bug Bounty, the uniqueness of this tool is that it can take a file full …☆38Updated 11 months ago
- Golang installer for DefectDojo☆28Updated 7 months ago
- Additional active scan checks for BURP☆28Updated 10 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 5 months ago
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆27Updated last year