cve-search / git-vuln-finder
Finding potential software vulnerabilities from git commit messages
☆409Updated last year
Alternatives and similar repositories for git-vuln-finder:
Users that are interested in git-vuln-finder are comparing it to the libraries listed below
- ☆186Updated 4 months ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆717Updated 7 months ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆353Updated 7 months ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆430Updated this week
- A simple SSRF-testing sheriff written in Go☆324Updated 5 months ago
- Tool for catching and logging different types of requests.☆220Updated 4 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆470Updated last year
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆256Updated 2 years ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆311Updated last year
- A tool to hunt for credentials in github wild AKA git*hunt☆294Updated 2 years ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆392Updated 7 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆300Updated 2 years ago
- A Node.js vulnerability finding tool.☆96Updated 4 years ago
- DOM XSS scanner for Single Page Applications☆403Updated this week
- A curated list of awesome browser security learning material.☆140Updated 2 years ago
- Automatic tool for DNS rebinding-based SSRF attacks☆298Updated 4 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆374Updated 3 years ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆417Updated 4 months ago
- secretz, minimizing the large attack surface of Travis CI☆325Updated 2 years ago
- Awesome information for WebSockets security research☆264Updated 3 years ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆248Updated 5 months ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆557Updated 2 years ago
- ☆675Updated 2 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,003Updated 4 years ago
- Check any website (or set of websites) for insecure security headers.☆247Updated last year
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆138Updated 3 years ago
- DNS Rebinding Exploitation Framework☆488Updated 3 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆452Updated 5 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆284Updated 2 months ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆220Updated 10 months ago