h3xstream / find-sec-bugsLinks
The FindBugs plugin for security audits of Java web applications and Android applications. (Also work with Scala and Groovy projects)
☆21Updated last year
Alternatives and similar repositories for find-sec-bugs
Users that are interested in find-sec-bugs are comparing it to the libraries listed below
Sorting:
- Tainted PhantomJS☆52Updated 10 years ago
- Faraday Continuous Scanning☆34Updated 8 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- REST/JSON interface to Burp Suite☆33Updated 4 years ago
- ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461☆48Updated 10 years ago
- ☆30Updated 2 years ago
- A regex based source code scanner.☆129Updated 8 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- Exploits and research stuffs☆55Updated 2 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- Demo Application and Exploit☆35Updated 8 years ago
- An extension for BurpSuite that highlights SSO messages in Burp's proxy window..☆118Updated 4 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆90Updated 7 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 11 years ago
- Web Sight Back-end Community Edition☆43Updated 2 years ago
- Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps a…☆74Updated 7 years ago
- [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …☆42Updated 6 years ago
- Deliberately vulnerable web application☆22Updated 8 years ago
- CVE database store☆132Updated 4 years ago
- sniff/log database traffic or actively execute arbitrary queries via TCP injection☆42Updated 9 years ago
- Hackerone disclosed report URL Aggregator☆30Updated 6 years ago
- The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch☆114Updated 4 years ago
- ☆90Updated last month
- A minimal Java client for the Nessus XML RPC interface☆23Updated 8 years ago
- A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.☆42Updated 8 years ago
- OAuth plugin for Burp Suite Extender☆42Updated 7 years ago
- proxy poc implementation of STARTTLS stripping attacks☆168Updated 3 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 6 years ago
- ☆71Updated 7 years ago