dmarushkin / OWASP-Appsec-Discovery
OWASP Appsec Discovery tool and service for searching, parsing, and scoring severity using rules or AI for Swagger, Protobuf, GraphQL, DTOs, and other structured contract objects in code
☆35Updated 2 months ago
Alternatives and similar repositories for OWASP-Appsec-Discovery:
Users that are interested in OWASP-Appsec-Discovery are comparing it to the libraries listed below
- Research on abusing GitLab Runners☆26Updated 4 years ago
- Collection of Semgrep rules for security analysis☆10Updated last year
- A tool to parse, deduplicate, and query multiple port scans.☆57Updated last year
- FireProx written in Go☆19Updated last year
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Updated 3 months ago
- Additional active scan checks for BURP☆26Updated 6 months ago
- Jumpstart multiple WebSocket servers quickly☆31Updated 3 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)☆49Updated 3 months ago
- Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…☆40Updated last year
- Backend for Nuclear Pond☆21Updated last year
- Useful collection of scapy-scripts and more☆27Updated 9 months ago
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Updated 3 years ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆21Updated 3 years ago
- Automated privilege escalation of the world's most popular Docker images.☆66Updated last year
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆43Updated last year
- Take domains on stdin and output them on stdout if they get resolved☆33Updated 2 years ago
- HardeningMeter is an open-source Python tool carefully designed to comprehensively assess the security hardening of binaries and systems.☆62Updated 4 months ago
- Highlighting different firefox containers in Burp Proxy☆11Updated 4 years ago
- ☆30Updated 2 weeks ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆22Updated last month
- Robust and blazing fast open-redirect vulnerability scanner with ability of recursevely crawling all of web-forms, entry points, or links…☆39Updated 2 years ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated 2 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆47Updated 6 months ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 8 months ago
- ☆18Updated 6 months ago
- an Evil Java RMI Registry.☆49Updated 2 years ago
- Python Pickle RCE Exploit + vulnerable Flask App☆15Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year