cve-search / git-vuln-finderLinks
Finding potential software vulnerabilities from git commit messages
☆417Updated 2 years ago
Alternatives and similar repositories for git-vuln-finder
Users that are interested in git-vuln-finder are comparing it to the libraries listed below
Sorting:
- A Node.js vulnerability finding tool.☆95Updated 2 months ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆209Updated 2 years ago
- Benchmarking repo for secrets scanning☆236Updated last year
- A guided mutation-based fuzzer for ML-based Web Application Firewalls☆192Updated last year
- research☆151Updated last year
- A curated list of awesome browser security learning material.☆145Updated 2 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆486Updated 2 years ago
- A simple SSRF-testing sheriff written in Go☆332Updated 11 months ago
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆202Updated 6 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆226Updated last year
- DOM XSS scanner for Single Page Applications☆414Updated 2 weeks ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆359Updated 4 years ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆442Updated last month
- Purposely vulnerable Java application to help lead secure coding workshops☆187Updated last year
- A step by step workshop to exploit various vulnerabilities in Node.js and Java applications☆157Updated last year
- ☆201Updated 11 months ago
- Damn Vulnerable Java (EE) Application☆142Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆153Updated last year
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆299Updated 2 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated 2 years ago
- secretz, minimizing the large attack surface of Travis CI☆328Updated 3 years ago
- A tool to hunt for credentials in github wild AKA git*hunt☆297Updated 2 years ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆255Updated 11 months ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆761Updated last year
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆356Updated 7 months ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆289Updated 8 months ago
- DNS rebinding toolkit☆255Updated 2 years ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆402Updated 8 years ago
- Public Roadmap | huntr.dev☆266Updated last year
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆262Updated 2 years ago