Alternatives and similar repositories for bsides-shadow-api:

Users that are interested in bsides-shadow-api are comparing it to the libraries listed below

• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆47Updated last year
• Tib3rius / Turbo-Intruder-Scripts
  A collection of Turbo Intruder scripts.
  ☆57Updated 2 months ago
• synacktiv / DepFuzzer
  ☆62Updated 3 months ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆26Updated 6 months ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆57Updated last year
• carlospolop / aws_iam_review
  ☆35Updated 2 weeks ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last month
• Verizon / verizon_burp_extensions_ai
  Verizon Burp Extensions: AI Suite
  ☆124Updated 3 weeks ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆40Updated last year
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 9 months ago
• Hipapheralkus / AIAIAI
  An Incredibly Annoying, Insufferable Authentication Implementation
  ☆31Updated 11 months ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆56Updated last year
• GangGreenTemperTatum / DOMspy
  A web security research tool for DOM testing
  ☆20Updated this week
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆39Updated 2 years ago
• hac01 / gcp-iam-brute
  ☆45Updated 10 months ago
• Macmod / STARS
  A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …
  ☆49Updated 2 years ago
• kubenomicon / kubenomicon
  Offensive Kubernetes Threat Matrix -- kubenomicon.com
  ☆38Updated 3 months ago
• JaimePolop / RExpository
  ☆75Updated 9 months ago
• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆121Updated 2 years ago
• intrudir / burpcollaborator-docker
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆30Updated 3 months ago
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆19Updated 2 years ago
• Escape-Technologies / API-Threat-Matrix
  A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
  ☆43Updated 7 months ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆124Updated last year
• nullenc0de / Cognitohunter
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆20Updated 2 months ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆67Updated 7 months ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆27Updated 3 weeks ago
• kartikdurg / Terrible-Thick-Client
  "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.
  ☆20Updated last year
• Tedixx / ripey
  Tool to query the RIPE database
  ☆11Updated 9 months ago
• hadriansecurity / subwiz
  A recon tool that uses ML to predict subdomains. Then returns those that resolve.
  ☆62Updated last month
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year