Alternatives and similar repositories for securityheaders

Users that are interested in securityheaders are comparing it to the libraries listed below

• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆304Updated 5 years ago
• AvasDream / pentesting-dockerfiles
  Pentesting/Bugbounty Dockerfiles.
  ☆177Updated 4 years ago
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆365Updated 2 years ago
• cihanmehmet / sub.sh
  Multiprocessing(Parallel)Subdomain Detect Script
  ☆331Updated last year
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆209Updated 2 years ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆68Updated this week
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆260Updated 3 months ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆557Updated 2 years ago
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆220Updated 2 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆126Updated 3 years ago
• secdec / attack-surface-detector-cli
  ☆82Updated 3 years ago
• ShielderSec / webtech
  Identify technologies used on websites.
  ☆289Updated last year
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆182Updated 3 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆192Updated 5 years ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆188Updated 4 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆175Updated 4 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆331Updated 8 months ago
• allyomalley / LiveTargetsFinder
  Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…
  ☆367Updated 3 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆487Updated 2 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆240Updated last year
• RUB-NDS / CORStest
  A simple CORS misconfiguration scanner
  ☆423Updated 5 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆205Updated 2 years ago
• tomdev / teh_s3_bucketeers
  ☆276Updated 4 years ago
• NotSoSecure / cloud-service-enum
  ☆259Updated last year
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆218Updated 6 years ago
• Cillian-Collins / subscraper
  Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…
  ☆223Updated 5 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 5 years ago
• Abss0x7tbh / bass
  Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …
  ☆150Updated last year
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆395Updated 2 years ago
• Mad-robot / Spartan
  My Recon Automation
  ☆194Updated 4 years ago