Alternatives and similar repositories for securityheaders

Users that are interested in securityheaders are comparing it to the libraries listed below

• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆301Updated 4 years ago
• ShielderSec / webtech
  Identify technologies used on websites.
  ☆288Updated last year
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆363Updated 2 years ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆65Updated 6 months ago
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆207Updated 2 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆192Updated 4 years ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆251Updated 2 months ago
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆390Updated 2 years ago
• proabiral / inception
  A highly configurable Framework for easy automated web scanning
  ☆376Updated 5 years ago
• HightechSec / git-scanner
  A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
  ☆352Updated 5 years ago
• AvasDream / pentesting-dockerfiles
  Pentesting/Bugbounty Dockerfiles.
  ☆177Updated 4 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆173Updated 3 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆330Updated 4 months ago
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆217Updated 2 years ago
• RUB-NDS / CORStest
  A simple CORS misconfiguration scanner
  ☆418Updated 4 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆202Updated 2 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆178Updated 2 years ago
• cr0hn / festin
  FestIn - Open S3 Bucket Scanner
  ☆234Updated 4 years ago
• cihanmehmet / sub.sh
  Multiprocessing(Parallel)Subdomain Detect Script
  ☆330Updated last year
• decal / werdlists
  Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases
  ☆362Updated 11 months ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• secdec / attack-surface-detector-cli
  ☆81Updated 3 years ago
• subfinder / goaltdns
  A permutation generation tool written in golang
  ☆210Updated 6 years ago
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆200Updated last year
• tomdev / teh_s3_bucketeers
  ☆276Updated 3 years ago
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆216Updated 5 years ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆188Updated 3 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆234Updated 10 months ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆540Updated 2 years ago
• mazen160 / xless
  The Serverless Blind XSS App
  ☆338Updated 2 months ago