adobe / Marinus

Related projects: ⓘ

• fastly / waf_testbed
  Chef Cookbook which provisions apache+mod_security+owasp-crs
  ☆35Updated 6 years ago
• heroku / bheu19-attacking-cloud-builds
  Slides, Cheatsheet and Resources from our Blackhat EU talk
  ☆38Updated 4 years ago
• TheHairyJ / Scout
  Scout - a Contactless Active Reconnaissance Tool
  ☆49Updated last year
• radicallyopensecurity / pentesting-scripts
  Scripts that we use for pentesting
  ☆41Updated 7 years ago
• pseudo-security / slacksecrets
  Scans Slack for API tokens, credentials, passwords, and more using YARA rules
  ☆37Updated 3 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 2 years ago
• ornl-sava / nv
  Nessus Vulnerability visualization for the web
  ☆31Updated 8 years ago
• 0xbharath / slurp-old
  A tool to enumerate S3 buckets manually or via certstream
  ☆80Updated last year
• DenizParlak / hayat
  Hayat is a script for report and analyze Google Cloud Platform resources.
  ☆79Updated 4 years ago
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆87Updated 6 months ago
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆30Updated last year
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆38Updated last year
• RhinoSecurityLabs / Presentations
  A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
  ☆37Updated 6 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆60Updated last year
• opendevsecops / terraform-aws-scanner
  Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled interval…
  ☆44Updated 5 years ago
• andresriancho / vpc-vpn-pivot
  Pivot into private VPC networks using a VPN connection
  ☆40Updated 4 years ago
• security-storm / DarkFalcon
  ☆27Updated this week
• paypal / scorebot
  ☆57Updated 4 years ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago
• VirtueSecurity / aws-extender-cli
  AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…
  ☆81Updated 4 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• marco-lancini / docker_burp
  Burp as a Docker Container
  ☆59Updated 4 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆80Updated 5 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆84Updated 5 years ago
• ghorbanzadeh / OWAAT
  OWASP ASVS Assessment Tool
  ☆28Updated 5 years ago
• TarlogicSecurity / Arecibo
  Endpoint for Out-of-Band Exfiltration (DNS & HTTP)
  ☆90Updated 5 years ago
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆54Updated 4 years ago
• ThreatResponse / mad-king
  Proof of Concept Zappa Based AWS Persistence and Attack Platform
  ☆37Updated 4 years ago