h3xstream / find-sec-bugs
The FindBugs plugin for security audits of Java web applications and Android applications. (Also work with Scala and Groovy projects)
☆21Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for find-sec-bugs
- Demo server for testing Java deserialization payloads☆15Updated 8 years ago
- Tainted PhantomJS☆53Updated 9 years ago
- Deliberately vulnerable web application☆22Updated 7 years ago
- REST/JSON interface to Burp Suite☆33Updated 4 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 10 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 8 years ago
- A fuzzing script for MitmProxy☆22Updated 9 years ago
- Parallel APK analyzer☆51Updated 7 years ago
- Repository for the Deprecated MITRE Capture the Flag scoreboard.☆11Updated 7 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 7 years ago
- Demo Application and Exploit☆35Updated 7 years ago
- Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).☆14Updated last year
- A Burp Suite extension that starts scanning on requests it sees, and dumps results on standard output☆20Updated 8 years ago
- Network and USB protocol fuzzing toolkit.☆34Updated 7 years ago
- An example of obtaining RCE via Redis and CSRF☆77Updated 8 years ago
- Faraday Continuous Scanning☆33Updated 8 years ago
- Exploits and research stuffs☆54Updated last year
- ☆35Updated 12 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆15Updated 7 years ago
- PoC for Scala and Groovy☆14Updated 8 years ago
- ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461☆47Updated 9 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆39Updated 8 years ago
- Peach Fuzzer Web Frontend☆52Updated 3 years ago
- Burp extension to quickly and easily develop Python complex exploits based on Burp proxy requests.☆33Updated 8 years ago
- Python API and REST API for the Checkmarx WSDL☆13Updated 8 years ago
- A PoC demonstrating techniques exploiting CVE-2016-5696 Off-Path TCP Exploits: Global Rate Limit Considered Dangerous☆41Updated 8 years ago