Alternatives and similar repositories for securityheaders

Users that are interested in securityheaders are comparing it to the libraries listed below

• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆209Updated 2 years ago
• ShielderSec / webtech
  Identify technologies used on websites.
  ☆288Updated last year
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆303Updated 4 years ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆256Updated 2 months ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆68Updated 2 months ago
• secdec / attack-surface-detector-cli
  ☆81Updated 3 years ago
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆218Updated 2 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆126Updated 3 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆181Updated 2 years ago
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆364Updated 2 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆192Updated 5 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆330Updated 7 months ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆204Updated 2 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆175Updated 3 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆548Updated 2 years ago
• AvasDream / pentesting-dockerfiles
  Pentesting/Bugbounty Dockerfiles.
  ☆177Updated 4 years ago
• NotSoSecure / cloud-service-enum
  ☆259Updated last year
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆188Updated 3 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• tomdev / teh_s3_bucketeers
  ☆276Updated 3 years ago
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆203Updated last year
• ffuf / ffuf-scripts
  Scripts to help with different ffuf tasks and workflows
  ☆222Updated last year
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆262Updated 2 years ago
• JuxhinDB / OOB-Server
  A Bind9 server for pentesters to use for Out-of-Band vulnerabilities
  ☆194Updated 6 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆485Updated 2 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆106Updated last year
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆236Updated last year
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆225Updated 5 years ago
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆216Updated 5 years ago
• decal / werdlists
  Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases
  ☆360Updated last year