canitrust / backend

Related projects ⓘ

Alternatives and complementary repositories for backend

• OWASP / Docker-Security
  Getting a handle on container security
  ☆632Updated 11 months ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆517Updated 6 years ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆245Updated last year
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆638Updated last year
• juice-shop / multi-juicer
  Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
  ☆275Updated this week
• oshp / oshp-validator
  Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.
  ☆100Updated last month
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆634Updated 5 years ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆253Updated 2 weeks ago
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆313Updated 2 years ago
• blabla1337 / skf-flask
  Security Knowledge Framework (SKF) Python Flask / Angular project
  ☆813Updated 8 months ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆375Updated last week
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆341Updated 3 years ago
• secureCodeBox / secureCodeBox
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆784Updated this week
• filedescriptor / untrusted-types
  ☆656Updated 2 years ago
• secureCodeBox / documentation
  This repo contains the complete SCB project documentation.
  ☆9Updated last year
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆532Updated 7 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆321Updated 2 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆443Updated 5 years ago
• OWASP / DevSecOpsGuideline
  The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
  ☆848Updated 4 months ago
• flipkart-incubator / watchdog
  Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
  ☆412Updated 6 years ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆483Updated 4 months ago
• jesusprubio / awesome-nodejs-pentest
  Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...
  ☆419Updated 3 years ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,492Updated last year
• blabla1337 / skf-labs
  Repo for all the OWASP-SKF Docker lab examples
  ☆440Updated 3 months ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆219Updated 4 years ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆515Updated 5 months ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆175Updated 3 months ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆638Updated last year
• ShielderSec / webtech
  Identify technologies used on websites.
  ☆276Updated 10 months ago
• OWASP / glue
  Application Security Automation
  ☆522Updated last year