bugcrowd / disclosure-policyLinks
Open Source Vulnerability Disclosure Framework. Maintained by Bugcrowd and Cipherlaw. Merged with https://github.com/disclose/dioterms.
☆132Updated 4 years ago
Alternatives and similar repositories for disclosure-policy
Users that are interested in disclosure-policy are comparing it to the libraries listed below
Sorting:
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆141Updated last year
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- ☆12Updated 8 years ago
- Microsoft Excel spreadsheets for consistent security evaluation of Android and iOS mobile applications☆50Updated 10 years ago
- OWASP ASVS Assessment Tool☆28Updated 7 years ago
- Scripts that we use for pentesting☆42Updated 8 years ago
- Extreme Vulnerable Node Application☆95Updated 7 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- User, contributor and developer friendly vulnerability database☆128Updated 6 years ago
- The Unofficial Burp Extension for DNSDumpster.com☆70Updated 7 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆139Updated 5 years ago
- A Firefox extension and WebSocket handler that checks S3/Google/Azure buckets while your browse.☆37Updated 5 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 8 years ago
- Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution☆20Updated 10 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Updated 6 years ago
- The knife of the Admin & Security auditor☆42Updated 5 years ago
- A simple tool for offline searching of default credentials for network devices, web applications and more.☆167Updated 8 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- A collection of response templates for invalid bug bounty reports.☆90Updated 7 years ago
- small script to detect web application firewall on any website☆43Updated 8 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆83Updated 5 years ago
- ☆20Updated 9 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- SharePoint scanner and fingerprinter based on WPScan☆25Updated 12 years ago
- A project designed to parse public source code repositories and find various types of vulnerabilities.☆193Updated 8 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆65Updated 2 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 7 years ago
- OAuth Security Cheatsheet☆40Updated 11 years ago
- Kurukshetra - A framework for teaching secure coding by means of interactive problem solving.☆140Updated last year
- Web Application Security☆129Updated last year