Alternatives and similar repositories for securityheaders

Users that are interested in securityheaders are comparing it to the libraries listed below

• ShielderSec / webtech
  Identify technologies used on websites.
  ☆291Updated last year
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆303Updated 5 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆182Updated 3 years ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆262Updated 2 weeks ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆192Updated 5 years ago
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆209Updated 2 years ago
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆396Updated 2 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆174Updated 4 years ago
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆222Updated 3 years ago
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆366Updated 2 years ago
• AvasDream / pentesting-dockerfiles
  Pentesting/Bugbounty Dockerfiles.
  ☆176Updated 4 years ago
• proabiral / inception
  A highly configurable Framework for easy automated web scanning
  ☆381Updated 5 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆490Updated 2 years ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆68Updated last month
• root4loot / rescope
  Bugbounty scope tool
  ☆332Updated 9 months ago
• tomdev / teh_s3_bucketeers
  ☆276Updated 4 years ago
• secdec / attack-surface-detector-cli
  ☆85Updated 3 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆561Updated 2 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆126Updated 3 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆110Updated 2 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 3 years ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆188Updated 4 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆261Updated 3 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆221Updated 5 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆205Updated 2 years ago
• brianwarehime / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆122Updated 4 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆239Updated last year
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆350Updated 5 years ago
• cihanmehmet / sub.sh
  Multiprocessing(Parallel)Subdomain Detect Script
  ☆330Updated last year
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆349Updated 4 years ago