Check any website (or set of websites) for insecure security headers.
☆256Jun 12, 2023Updated 2 years ago
Alternatives and similar repositories for securityheaders
Users that are interested in securityheaders are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations an…☆16Sep 4, 2020Updated 5 years ago
- A basic tool to check security headers of a website☆829Mar 7, 2026Updated last month
- ☆16Oct 3, 2018Updated 7 years ago
- Python script to check HTTP security headers☆67Nov 16, 2025Updated 5 months ago
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆21May 3, 2019Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- oauth security guidelines☆232Jun 25, 2019Updated 6 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 5 years ago
- ☆13Oct 3, 2023Updated 2 years ago
- An application to catch, search and analyze HTTP secure headers.☆64Jun 2, 2021Updated 4 years ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆330Mar 27, 2024Updated 2 years ago
- Simple NLP Article Spinner algorithm☆12Aug 30, 2018Updated 7 years ago
- HTTP verb tampering & methods enumeration☆69Mar 7, 2026Updated last month
- jackson-databind-exploit☆13Mar 22, 2019Updated 7 years ago
- Http Security Headers Checker Tool written in PHP Cli + Useful Tips to set Http Security Headers☆10Mar 27, 2021Updated 5 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- String or worldlist encoder for use in fuzzing or web application testing☆19Sep 2, 2019Updated 6 years ago
- Test your page against basic security, html, wordpress, ... check lists☆28Mar 18, 2026Updated last month
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆355Oct 14, 2020Updated 5 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Dec 23, 2022Updated 3 years ago
- Python framework for collecting and analyzing TLS certificate data via the Certificate Transparency Network☆12May 25, 2025Updated 11 months ago
- Basic implementation of certstream to print new subdomains and domains☆36Jul 6, 2021Updated 4 years ago
- Python script to exploit java unserialize on t3 (Weblogic)☆59Aug 9, 2017Updated 8 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆172Nov 17, 2021Updated 4 years ago
- Bug Bounty Clipboard☆17Nov 6, 2019Updated 6 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Python framework for manipulating bulk WHOIS data from RIRs☆22Jan 8, 2026Updated 3 months ago
- Enumerate the permissions associated with AWS credential set☆1,232Feb 5, 2024Updated 2 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Jul 26, 2021Updated 4 years ago
- Custom semgrep rules registry☆14Aug 23, 2022Updated 3 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Sep 4, 2023Updated 2 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆52Apr 25, 2026Updated last week
- A Nmap XSL implementation with Bootstrap.☆964Nov 13, 2023Updated 2 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,060Mar 7, 2026Updated last month
- Some of the gf patterns which i use☆44Jan 19, 2022Updated 4 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Burp Suite extension to log GraphQL operations as a comment☆23Aug 9, 2021Updated 4 years ago
- Go static analysis tool that checks for security issues using an AST.☆29Nov 19, 2018Updated 7 years ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,774Apr 22, 2026Updated 2 weeks ago
- SATO is a PowerShell tool focuses on providing flexible, multi-grant type support for obtaining, managing, and analyzing Azure tokens.☆23Nov 24, 2025Updated 5 months ago
- Contains random code and some of my older projects☆28Apr 17, 2026Updated 2 weeks ago
- Accompanying material needed for the workshop☆11Jun 14, 2023Updated 2 years ago
- Query various sources for CVE proof-of-concepts☆53Jun 1, 2023Updated 2 years ago