federicodotta / semgrep-rules

Related projects ⓘ

Alternatives and complementary repositories for semgrep-rules

• neex / ghostinthepdf
  ☆158Updated 3 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆39Updated 2 years ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆63Updated 10 months ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆69Updated 3 years ago
• shivsahni / NSDetect
  ☆22Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆87Updated last year
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• detectify / Varnish-H2-Request-Smuggling
  ☆55Updated 3 years ago
• defparam / haptyc
  ☆92Updated 3 years ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆29Updated 2 years ago
• PortSwigger / request-minimizer
  ☆19Updated last year
• GovTech-CSG / ProxyAgent
  ☆64Updated 2 years ago
• federicodotta / Burp-Suite-Extender-Montoya-Course
  This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …
  ☆35Updated 3 months ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year
• CaptainFreak / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆26Updated 3 years ago
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆40Updated last year
• nullenc0de / reverse-apk
  ☆50Updated this week
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆128Updated last year
• dsecuredcom / yataf
  yataf extracts secrets and paths from files or urls - its best used against javascript files
  ☆51Updated last month
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 2 months ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆56Updated last year
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆66Updated last year
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆50Updated 2 years ago
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆29Updated 5 years ago
• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆50Updated last week
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆118Updated last year
• 254Labs / awesome-bambdas
  A collection of Burp Suite Lambda Filters ~ Bambdas
  ☆22Updated last month
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆37Updated 2 months ago