jtmelton / attack-surface-analyzerLinks
A tool for analyzing the attack surface of an application
☆19Updated 5 months ago
Alternatives and similar repositories for attack-surface-analyzer
Users that are interested in attack-surface-analyzer are comparing it to the libraries listed below
Sorting:
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 4 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆75Updated 4 years ago
- OWASP Threat Dragon with Gitlab Integration☆27Updated 7 years ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Externalize Java application access to protected resources as log messages.☆42Updated 2 weeks ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆63Updated 2 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆14Updated 3 years ago
- All-in-one tool for managing vulnerability reports from AppSec pipelines☆108Updated 2 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- ☆21Updated 6 years ago
- An AWS Lambda vulnerable application written in flask.☆49Updated 7 years ago
- ☆66Updated last month
- ☆29Updated 8 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- Burp Extension for AWS Signing☆89Updated 7 months ago
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago
- Assorted tools for security-related task for git repositories☆59Updated 3 years ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- OAuth 2.0 Dynamic Security Scanner☆33Updated 4 years ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆110Updated 7 months ago