cxai / Checkmarx-PowerToolsLinks
A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
☆14Updated 7 years ago
Alternatives and similar repositories for Checkmarx-PowerTools
Users that are interested in Checkmarx-PowerTools are comparing it to the libraries listed below
Sorting:
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆108Updated 5 years ago
- Automate security tests using Burp Suite.☆229Updated last year
- General Open Architecture Security Questionnaire☆31Updated 2 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Updated 7 years ago
- Automated SonarQube☆72Updated 6 years ago
- HTML5 WebSocket message fuzzer☆146Updated 6 years ago
- Burp Suite extension for JAX-RS☆65Updated 8 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆66Updated last year
- Burp extension☆58Updated 7 years ago
- CORS checking☆34Updated 7 years ago
- A server vulnerable to XXE that can be used to test payloads using the xxer tool.☆26Updated 7 years ago
- Jekyll Files for cloudsecwiki.com☆50Updated 3 years ago
- ☆13Updated 4 years ago
- XSS payloads for edge cases☆34Updated 6 years ago
- Tool for CVE-2018-16323☆81Updated 6 years ago
- JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.☆100Updated 6 years ago
- A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications☆72Updated 10 years ago
- Checkmarx Python SDK☆28Updated this week
- Another plugin for CRLF vulnerability detection☆26Updated 8 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆55Updated 8 years ago
- Jira未授权SSRF漏洞☆31Updated 5 years ago
- ☆71Updated 7 years ago
- Automatically exported from code.google.com/p/ra2-dom-xss-scanner☆29Updated 9 years ago
- JWT fuzzer☆107Updated 7 years ago
- Java serialization brute force attack tool.☆123Updated 8 years ago
- Scans tcl for command injection☆36Updated 6 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆120Updated 4 years ago
- some codeql rules☆15Updated 5 years ago
- X41 BeanStack - Stack Trace Fingerprinting BETA☆52Updated 4 years ago