grafana / bugbounty

Related projects ⓘ

Alternatives and complementary repositories for bugbounty

• redhuntlabs / KubeStalk
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆167Updated last year
• raesene / k8s_ssrf_portscanner
  ☆31Updated last year
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆43Updated last year
• krol3 / demo-fileless
  ☆12Updated 2 years ago
• raesene / container-security-site
  ☆91Updated 6 months ago
• dsecuredcom / yataf
  yataf extracts secrets and paths from files or urls - its best used against javascript files
  ☆51Updated 2 months ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 months ago
• knative-extensions / security-guard
  Runtime security plug to protect user containers
  ☆65Updated this week
• trickest / enumerepo
  List all public repositories for (valid) GitHub usernames
  ☆68Updated last year
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆22Updated 3 months ago
• bsysop / IpLogger
  ☆14Updated last year
• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆52Updated last week
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆54Updated last year
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆110Updated last year
• jp-gouin / multi-cluster-supply-chain
  ☆15Updated 4 months ago
• securisec / cliam
  Cloud agnostic IAM permissions enumerator
  ☆139Updated 2 months ago
• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆54Updated 6 months ago
• g3rzi / HackingKubernetes
  This repository contain any information that can be used to hack Kubernetes
  ☆100Updated 2 years ago
• 4ARMED / kubeletmein
  Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.
  ☆160Updated last year
• fastly / wafefficacy
  Measures the effectiveness of your Web Application Firewall (WAF)
  ☆76Updated last year
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆27Updated last year
• trickest / cloud
  Monitoring the Cloud Landscape
  ☆74Updated this week
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆20Updated last month
• synacktiv / DepFuzzer
  ☆40Updated last month
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆59Updated 8 months ago
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆92Updated 5 months ago
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 2 months ago
• raesene / eathar
  ☆24Updated 6 months ago