Check any website (or set of websites) for insecure security headers.
☆256Jun 12, 2023Updated 2 years ago
Alternatives and similar repositories for securityheaders
Users that are interested in securityheaders are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations an…☆16Sep 4, 2020Updated 5 years ago
- A basic tool to check security headers of a website☆820Mar 7, 2026Updated 2 weeks ago
- ☆16Oct 3, 2018Updated 7 years ago
- Python script to check HTTP security headers☆67Nov 16, 2025Updated 4 months ago
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆21May 3, 2019Updated 6 years ago
- oauth security guidelines☆232Jun 25, 2019Updated 6 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 4 years ago
- ☆13Oct 3, 2023Updated 2 years ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆328Mar 27, 2024Updated last year
- Simple NLP Article Spinner algorithm☆12Aug 30, 2018Updated 7 years ago
- HTTP verb tampering & methods enumeration☆66Mar 7, 2026Updated 2 weeks ago
- jackson-databind-exploit☆13Mar 22, 2019Updated 7 years ago
- Http Security Headers Checker Tool written in PHP Cli + Useful Tips to set Http Security Headers☆10Mar 27, 2021Updated 4 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆19Sep 2, 2019Updated 6 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆356Oct 14, 2020Updated 5 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Dec 23, 2022Updated 3 years ago
- Python framework for collecting and analyzing TLS certificate data via the Certificate Transparency Network☆12May 25, 2025Updated 10 months ago
- Basic implementation of certstream to print new subdomains and domains��☆36Jul 6, 2021Updated 4 years ago
- Python script to exploit java unserialize on t3 (Weblogic)☆61Aug 9, 2017Updated 8 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆172Nov 17, 2021Updated 4 years ago
- Bug Bounty Clipboard☆17Nov 6, 2019Updated 6 years ago
- Python framework for manipulating bulk WHOIS data from RIRs☆22Jan 8, 2026Updated 2 months ago
- Enumerate the permissions associated with AWS credential set☆1,229Feb 5, 2024Updated 2 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Jul 26, 2021Updated 4 years ago
- Custom semgrep rules registry☆14Aug 23, 2022Updated 3 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Sep 4, 2023Updated 2 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆47Jan 14, 2026Updated 2 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,025Mar 7, 2026Updated 2 weeks ago
- Some of the gf patterns which i use☆44Jan 19, 2022Updated 4 years ago
- Burp Suite extension to log GraphQL operations as a comment☆23Aug 9, 2021Updated 4 years ago
- Go static analysis tool that checks for security issues using an AST.☆29Nov 19, 2018Updated 7 years ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,744Feb 16, 2026Updated last month
- SATO is a PowerShell tool focuses on providing flexible, multi-grant type support for obtaining, managing, and analyzing Azure tokens.☆22Nov 24, 2025Updated 4 months ago
- Contains random code and some of my older projects☆28Feb 28, 2024Updated 2 years ago
- Accompanying material needed for the workshop☆11Jun 14, 2023Updated 2 years ago
- Query various sources for CVE proof-of-concepts☆53Jun 1, 2023Updated 2 years ago
- Want to execute command repeatedly without workache? Here is shloop born for it!☆11Mar 2, 2022Updated 4 years ago
- A repository for GraphQL Extension for Burp Suite☆57Oct 31, 2018Updated 7 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆2,025Aug 19, 2021Updated 4 years ago