Alternatives and similar repositories for CrossCheck

Users that are interested in CrossCheck are comparing it to the libraries listed below

• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆90Updated last month
• nodyhub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Updated last year
• nccgroup / cq
  ☆116Updated 2 years ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆42Updated 6 months ago
• sensepost / depscanner
  Detect public repository dependencies in the GitHub repositories with an orphan required library.
  ☆21Updated 6 months ago
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• synacktiv / DepFuzzer
  ☆93Updated last week
• Orange-OpenSource / decret
  DEbian Cve REproducer Tool
  ☆27Updated 2 weeks ago
• synacktiv / gh-hijack-runner
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆29Updated last year
• n0tspam / delepwn
  DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…
  ☆37Updated 4 months ago
• LowOrbitSecurity / gubble
  gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…
  ☆79Updated 6 months ago
• SygniaLabs / Qemuno
  Qemuno Framework
  ☆24Updated 3 years ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Updated 2 years ago
• SpecterOps / GitHound
  ☆82Updated last month
• vulnerable-apps / awesome-vulnerable
  A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
  ☆47Updated 2 years ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆54Updated 3 years ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆66Updated last year
• hac01 / gcp-iam-brute
  ☆50Updated last year
• 5f0ne / pdf-examiner
  Provides an overview of the inner file structure of a PDF
  ☆25Updated 3 years ago
• ricardojoserf / DoubleTeam
  Listener that spawns a new tmux window for each incoming reverse shell + Supports listening on many ports
  ☆59Updated 5 months ago
• offensive-actions / release-tampering-pocs
  Proof of Concepts for malicious maintainers: How to Tamper with Releases built with GitHub Actions Worfklows, presented at fwd:cloudsec E…
  ☆77Updated 3 months ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆71Updated 3 years ago
• NetSPI / FuncoPop
  Tools for attacking Azure Function Apps
  ☆87Updated last month
• mainframed / DVCA
  Damn Vulnerable CICS Application
  ☆29Updated last year
• wavestone-cdt / DEFCON-CICD-pipelines-workshop
  ☆94Updated 3 years ago
• praetorian-inc / noseyparker-explorer
  Interactive results explorer and annotation tool for Nosey Parker
  ☆44Updated 5 months ago
• phretor / infosec-opml
  My very personal and opinionatedly organized infosec/cybersec sources in one OPML file
  ☆58Updated 3 years ago
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆43Updated last year
• siamthanathack / Passkey-Raider
  Burp Suite extension for testing Passkey systems.
  ☆75Updated 8 months ago
• nettitude / yasha
  ☆18Updated last year