ZFPSystems / zaproxy-automation

Related projects: ⓘ

• 0xsha / ProxyFor
  Validate proxies for specific domain
  ☆34Updated 3 years ago
• PortSwigger / postman-integration
  Postman Integration is an extension for burp to generate Postman collection fomat json file.
  ☆19Updated 2 years ago
• noraj / tryhackme-writeups
  Write-Ups for TryHackMe
  ☆21Updated 3 years ago
• SpiderLabs / masher
  multiple password 'asher using Python’s hashlib
  ☆15Updated 3 years ago
• PortSwigger / site-map-extractor
  ☆10Updated 3 years ago
• Knowledge-Wisdom-Understanding / Auto-Recon
  Information-Gathering Shell Script
  ☆28Updated 3 years ago
• intruder-io / param-miner
  Fork of https://github.com/PortSwigger/param-miner for header smuggling research
  ☆12Updated 2 years ago
• JupiterOne-Archives / j1nuclei
  ☆13Updated 11 months ago
• ethicalhackingplayground / crlfmap
  CRLFMap is a tool to find HTTP Splitting vulnerabilities
  ☆25Updated 4 years ago
• CoolHandSquid / TmuxRecon
  Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the targets with the s…
  ☆17Updated 2 years ago
• Static-Flow / BurpRequestCleaner
  This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.
  ☆12Updated 3 years ago
• ztgrace / mole
  Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.
  ☆56Updated 4 years ago
• denniskniep / interactsh_deploy
  Interactsh deployment to AWS EC2 Instance with Terraform
  ☆11Updated 2 years ago
• aaaguirrep / offensive-docker-custom
  Dockerfile with advanced configurations for Offensive Docker.
  ☆11Updated 4 years ago
• onsecurity / evilginx2
  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …
  ☆13Updated 5 months ago
• enenumxela / sigurlx
  ☆28Updated this week
• aufzayed / digit
  Extract endpoints from specific Git repository for fuzzing
  ☆21Updated 3 years ago
• shanelawrence / cve_manager_VS
  A collection of python apps and shell scripts to email an xlsx spreadsheet of new vulnerabilities in the NIST CVE database and their asso…
  ☆12Updated 3 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆25Updated 2 years ago
• PortSwigger / co2
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆22Updated 6 months ago
• disclose / diosts
  A Go scraper that validates security.txt files and outputs them in the disclose.io JSON format.
  ☆20Updated 3 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆41Updated 2 years ago
• thelicato / fire
  Take domains on stdin and output them on stdout if they get resolved
  ☆33Updated 2 years ago
• hahwul / ws-smuggler
  WebSocket Connection Smuggler
  ☆45Updated last year
• emgaurav / objectify-s3
  Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.
  ☆15Updated last month
• iknowjason / hammer
  An example of a mis-configured Rails application release under MIT license.
  ☆20Updated last year
• shelld3v / flydns
  Related subdomains finder
  ☆29Updated 2 years ago
• OnCyberWar / Pentesting-notes
  Pentesting notes
  ☆17Updated last year
• redhuntlabs / Maltego-Scripts
  ☆33Updated 6 years ago
• xapax / owasp-checklist
  ☆27Updated 5 years ago