doyensec / PESD-Exporter-Extension
PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
☆95Updated 7 months ago
Related projects: ⓘ
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆127Updated last year
- An extension to use Semgrep inside Burp Suite.☆86Updated last year
- ☆108Updated last year
- Manager of third-party sources of Semgrep rules 🗂☆74Updated last month
- ☆173Updated 6 months ago
- A GraphQL enumeration and extraction tool☆127Updated last year
- boostsecurityio/lotp☆97Updated 5 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆57Updated 11 months ago
- GitHub Attack Toolkit - Extreme Edition☆151Updated this week
- Blogpost series showcasing interesting cloud - web app security bugs☆44Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆151Updated 3 weeks ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆19Updated last month
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Updated last week
- ☆115Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆38Updated 9 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆162Updated 4 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆110Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆250Updated 2 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆175Updated 2 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆138Updated 3 years ago
- Custom scripts for the PIPER Burp extensions.☆97Updated 11 months ago
- Scan DockerHub images that match a keyword to find secrets.☆54Updated 3 years ago
- Nuclei plugins to audit Chrome extensions☆64Updated 2 months ago
- ☆90Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆61Updated 11 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆118Updated 5 months ago
- Find CVE PoCs on GitHub☆136Updated 11 months ago
- ☆58Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated last year
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆16Updated last month