akabe1 / akabe1-semgrep-rules
My collection of Semgrep rules for vulnerability detection on source code (swift, java)
☆30Updated 6 months ago
Related projects: ⓘ
- A collection of my Semgrep rules☆46Updated last year
- ☆17Updated 2 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆19Updated last month
- OAuth 2.0 Dynamic Security Scanner☆31Updated 3 years ago
- Static Token And Credential Scanner☆94Updated last year
- An Evil OIDC Server☆49Updated last year
- Dependency Confusion Security Testing Tool☆39Updated 2 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated last year
- ☆90Updated 2 years ago
- Custom scripts for the PIPER Burp extensions.☆97Updated 11 months ago
- A curated list of argument injection vectors☆37Updated 3 weeks ago
- Manager of third-party sources of Semgrep rules 🗂☆74Updated last month
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated last year
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆41Updated 11 months ago
- ☆11Updated 2 months ago
- ☆22Updated 2 years ago
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.☆12Updated last month
- An extension to use Semgrep inside Burp Suite.☆86Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆38Updated 9 months ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆30Updated last year
- CircleCI log and security configuration automations☆22Updated 4 years ago
- Simple PoC for demonstrating Race Conditions on Websockets☆49Updated last year
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆20Updated 2 months ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 2 years ago
- ☆10Updated 5 years ago
- A simple Google Protobuf Decoder for Burp☆42Updated last year
- ☆58Updated last year
- ☆17Updated last year
- Push notifications to Slack channel or to custom server based on BurpSuite response conditions.☆18Updated 3 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆46Updated 2 months ago