Alternatives and similar repositories for Checkmarx-PowerTools:

Users that are interested in Checkmarx-PowerTools are comparing it to the libraries listed below

• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆50Updated 3 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆122Updated 7 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆66Updated last year
• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆31Updated 5 years ago
• shubhamshubhankar / autoSource
  Automated SonarQube
  ☆73Updated 5 years ago
• PortSwigger / freddy-deserialization-bug-finder
  ☆42Updated 4 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆107Updated 5 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆225Updated 9 months ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated 2 years ago
• m3ssap0 / SpringBreakVulnerableApp
  WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk…
  ☆12Updated 6 years ago
• GDSSecurity / JSSE_Fortify_SCA_Rules
  Custom Fortify SCA rules to detect common JSSE certification validation flaws
  ☆11Updated 9 years ago
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆135Updated 2 years ago
• DefectDojo / Burp-Plugin
  A Burp plugin to export findings to DefectDojo
  ☆30Updated last year
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆31Updated last year
• wuntee / BurpAuthzPlugin
  ☆76Updated 11 years ago
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆30Updated 10 months ago
• vah13 / BurpCRLFPlugin
  Another plugin for CRLF vulnerability detection
  ☆26Updated 8 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 8 years ago
• PortSwigger / java-serialized-payloads
  YSOSERIAL Integration with burp suite
  ☆40Updated 3 years ago
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆48Updated 4 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆35Updated 5 years ago
• siberas / sjet
  siberas JMX exploitation toolkit
  ☆129Updated 2 years ago
• PortSwigger / headless-burp
  Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
  ☆25Updated 6 years ago
• kugg / tclscan
  Scans tcl for command injection
  ☆36Updated 5 years ago
• we45 / Serverless-Workshop
  Serverless Workshop
  ☆16Updated 2 years ago
• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆112Updated 6 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 7 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆105Updated 5 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated 8 months ago