cneill / appsec-resources

Related projects ⓘ

Alternatives and complementary repositories for appsec-resources

• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆156Updated 5 years ago
• IOActive / RepoSsessed
  A project designed to parse public source code repositories and find various types of vulnerabilities.
  ☆190Updated 7 years ago
• moloch-- / CSP-Bypass
  A Burp Plugin for Detecting Weaknesses in Content Security Policies
  ☆163Updated last year
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆128Updated 7 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆124Updated 5 months ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆57Updated 2 years ago
• vulndb / data
  User, contributor and developer friendly vulnerability database
  ☆129Updated 5 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆136Updated 4 years ago
• Rossmairm / PenTools
  This is a bundle of python and bash penetration testing tools for recon and information gathering.
  ☆80Updated 8 years ago
• chihebchebbi / Internet-Of-Things-Pentesting-Framework
  ☆92Updated 6 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆77Updated 8 years ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆87Updated 10 years ago
• 0xcite / fingerping
  A security tool to fingerprint PNG libraries used by web applications
  ☆80Updated 5 years ago
• funkandwagnalls / pythonpentest
  A repository for large scripts from my book.
  ☆162Updated 3 years ago
• burp-hash / burp-hash
  ☆32Updated 9 years ago
• Plazmaz / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆117Updated 5 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 8 years ago
• srcclr / bughunt
  A weekly challenge where we share some code and you find a bug in it.
  ☆70Updated 9 years ago
• markclayton / bumpster
  The Unofficial Burp Extension for DNSDumpster.com
  ☆70Updated 6 years ago
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆30Updated 7 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• war-and-code / jawfish
  Tool for breaking into web applications.
  ☆90Updated 5 years ago
• SecarmaLabs / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆44Updated 7 years ago
• siberas / watobo
  ☆87Updated 3 weeks ago