doyensec / imagemagick-security-policy-evaluatorLinks
The ImageMagick Security Policy Evaluator allows developers and security experts to check if an XML Security Policy is hardened against a wide set of malicious attacks. It assists with the process of reviewing such policies, which is usually a manual task, and helps identify the best practices for ImageMagick deployments.
☆18Updated 2 years ago
Alternatives and similar repositories for imagemagick-security-policy-evaluator
Users that are interested in imagemagick-security-policy-evaluator are comparing it to the libraries listed below
Sorting:
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 7 years ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 4 years ago
- This utility can help determine if indicators of compromise (IOCs) exist in the log files of a Pulse Secure VPN Appliance for CVE-2019-11…☆28Updated 5 years ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- A static website template for security pages.☆53Updated 5 months ago
- A curated threat modeling library collection☆23Updated 2 years ago
- Serverless honeytoken 🕵🏻♂️☆81Updated 2 years ago
- A documentation and tracking project with the goal of making package management systems more secure.☆51Updated 4 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- InfoSec OpenAI Examples☆19Updated 2 years ago
- PCC's aim is to provide a high performing offline tool to easily assess which users are vulnerable to Password Reuse Attacks (a.k.a. Pass…☆18Updated 6 years ago
- Vulnerability Management tool using the CVE-Search database☆10Updated 9 years ago
- This Risk Rating Calculator is based on OWASP's Risk Rating Methodology☆22Updated last year
- ☆39Updated last year
- ☆18Updated 5 years ago
- A tool for analyzing the attack surface of an application☆19Updated 9 months ago
- ☆10Updated 3 years ago
- An example of a mis-configured Rails application release under MIT license.☆21Updated 2 years ago
- ☆21Updated 7 years ago
- Salesforce Policy Deviation Checker☆30Updated 5 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- A Burp plugin to export findings to DefectDojo☆30Updated 2 years ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆30Updated 10 months ago
- Netbyte is a Netcat-style tool that facilitates probing proprietary TCP and UDP services. It is lightweight, fully interactive and provid…☆60Updated last week
- A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…☆19Updated 4 years ago
- A tool for testing continuous integration (CI) or continuous delivery (CD) system security☆24Updated 12 years ago
- ZAP Management Scripts☆23Updated last week
- UniSBOM is a tool to build a software bill of materials on any platform with a unified data format.☆36Updated 3 years ago
- Sharing Threat Hunting runbooks☆25Updated 6 years ago
- A standard allowing organizations to nominate security contact points and policies via DNS TXT records.☆32Updated 6 months ago