Alternatives and similar repositories for securityheaders

Users that are interested in securityheaders are comparing it to the libraries listed below

• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆304Updated 5 years ago
• ShielderSec / webtech
  Identify technologies used on websites.
  ☆294Updated 2 years ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆262Updated 2 weeks ago
• AvasDream / pentesting-dockerfiles
  Pentesting/Bugbounty Dockerfiles.
  ☆176Updated 4 years ago
• cihanmehmet / sub.sh
  Multiprocessing(Parallel)Subdomain Detect Script
  ☆330Updated 2 years ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆68Updated 2 months ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆174Updated 4 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆207Updated 2 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆332Updated 11 months ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆242Updated last year
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆225Updated 3 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆192Updated 5 years ago
• secdec / xssmap
  Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
  ☆150Updated 3 years ago
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆366Updated 2 years ago
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆396Updated 2 years ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆349Updated 4 years ago
• NotSoSecure / cloud-service-enum
  ☆260Updated last year
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆187Updated 4 years ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆225Updated 6 years ago
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆218Updated 6 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆153Updated 3 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆185Updated 3 years ago
• mhmdiaa / second-order
  Second-order subdomain takeover scanner
  ☆406Updated 5 months ago
• tomdev / teh_s3_bucketeers
  ☆276Updated 4 years ago
• fransr / template-generator
  A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…
  ☆256Updated 2 years ago
• secdec / attack-surface-detector-cli
  ☆86Updated 3 years ago
• janmasarik / resolvers
  List of periodically validated public DNS resolvers
  ☆237Updated this week
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆564Updated 2 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆491Updated 2 years ago
• decal / werdlists
  Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases
  ☆361Updated last year