Alternatives and similar repositories for git-vuln-finder:

Users that are interested in git-vuln-finder are comparing it to the libraries listed below

• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 2 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆464Updated last year
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆322Updated 2 months ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆400Updated 6 months ago
• cezary-sec / awesome-browser-security
  A curated list of awesome browser security learning material.
  ☆138Updated 2 years ago
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆707Updated 5 months ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆448Updated 5 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆349Updated 4 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆256Updated 2 years ago
• tprynn / web-methodology
  Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
  ☆202Updated 2 months ago
• elttam / semgrep-rules
  ☆178Updated 2 months ago
• Santandersecurityresearch / corsair_scan
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆123Updated last year
• PalindromeLabs / awesome-websocket-security
  Awesome information for WebSockets security research
  ☆258Updated 3 years ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆138Updated 3 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆510Updated 2 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆495Updated last year
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆331Updated 4 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆200Updated last year
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆172Updated 2 years ago
• usdAG / cstc
  CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
  ☆227Updated last week
• jmdx / TLS-poison
  ☆686Updated 2 months ago
• authcov / authcov
  Web app authorisation coverage scanning
  ☆236Updated last year
• NotSoSecure / cloud-service-enum
  ☆238Updated 7 months ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆251Updated last year
• snyk-labs / exploit-workshop
  A step by step workshop to exploit various vulnerabilities in Node.js and Java applications
  ☆156Updated 10 months ago
• root4loot / rescope
  Bugbounty scope tool
  ☆323Updated last month
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆219Updated 5 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆281Updated 2 weeks ago
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆207Updated last year
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆555Updated last year