attacksurge / awesome-attack-surface-monitoring
Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
☆354Updated last month
Related projects ⓘ
Alternatives and complementary repositories for awesome-attack-surface-monitoring
- Zero-dollar attack surface management tool☆261Updated 7 months ago
- ☆314Updated last month
- Vulnerability assessment and penetration testing automation and reporting platform for teams.☆434Updated this week
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆263Updated last year
- Awesome cloud enumerator☆894Updated 3 months ago
- Golang client for querying SecurityTrails API data☆539Updated last year
- API Security Project aims to present unique attack & defense methods in API Security field☆278Updated 2 years ago
- Fast and customizable vulnerability scanner For JIRA written in Python☆317Updated 9 months ago
- PeTeReport is an open-source application vulnerability reporting tool.☆470Updated 5 months ago
- SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.☆218Updated 2 years ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆381Updated 3 months ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆876Updated 5 months ago
- Scrapts Scrapts Scrapts☆235Updated 7 months ago
- VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, i…☆431Updated this week
- Tool to discover external and internal network attack surface☆192Updated 5 months ago
- ☆447Updated 6 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆50Updated 6 months ago
- Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.☆245Updated 3 weeks ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆861Updated this week
- automated web assets enumeration & scanning [DEPRECATED]☆285Updated last year
- Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still…☆404Updated 3 weeks ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆448Updated 7 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆533Updated 11 months ago
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆265Updated 4 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆457Updated 2 years ago
- Go client to communicate with Chaos DB API.☆641Updated this week
- This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.☆223Updated 2 years ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆166Updated 6 months ago
- mx-takeover focuses DNS MX records and detects misconfigured MX records.☆336Updated last year
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆845Updated 10 months ago