Alternatives and similar repositories for secheaders:

Users that are interested in secheaders are comparing it to the libraries listed below

• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆134Updated 4 years ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 3 years ago
• righettod / log4shell-analysis
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆31Updated 3 years ago
• GitLab-Red-Team / gitrob
  Reconnaissance tool for GitLab and GitHub organizations
  ☆52Updated last year
• Orange-Cyberdefense / versionshaker
  Find the remote website version based on a git repository
  ☆125Updated 3 years ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆247Updated last year
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆123Updated last year
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆101Updated last year
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆124Updated last year
• N7WEra / PublicVulnerableMachines
  Publicly availalbe vulnarble by desgin vm/machines
  ☆30Updated 2 years ago
• pry0cc / relevant-wordlist
  A wordlist that is kept up to date with the latest headlines to provide relevant words to human society
  ☆119Updated 3 years ago
• digininja / CloudStorageFinder
  A collection of tools to find data that has been made public in cloud storage systems such as S3 Buckets and Digital Ocean Spaces
  ☆75Updated 3 years ago
• vianasw / dvwps
  Damn Vulnerable WordPress Site
  ☆51Updated 2 years ago
• pseudo-security / slacksecrets
  Scans Slack for API tokens, credentials, passwords, and more using YARA rules
  ☆39Updated 4 years ago
• Ebryx / Nessus_Map
  Parse .nessus file(s) and shows output in interactive UI
  ☆150Updated 11 months ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆125Updated last year
• belane / CloudHunter
  AWS, Azure, Alibaba and Google bucket scanner
  ☆144Updated last year
• reconmap / web-client
  Reconmap's web client written in React. Manage all your pentest projects from a single place.
  ☆51Updated this week
• TerminalFi / NessusParser-Excel
  NessusV2 File Parser
  ☆66Updated 2 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆50Updated last year
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• v1ll41n / H1-Report-Finder
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42Updated 4 years ago
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆156Updated 3 years ago
• xapax / owasp-checklist
  ☆28Updated 5 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 5 years ago
• DenizParlak / hayat
  Hayat is a script for report and analyze Google Cloud Platform resources.
  ☆80Updated 5 years ago
• gocaio / sct
  Security checks for http headers and cookies
  ☆24Updated 4 years ago
• EdOverflow / bug-bounty-responses
  A collection of response templates for invalid bug bounty reports.
  ☆91Updated 7 years ago