michelin / ChopChop
ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
☆687Updated last year
Alternatives and similar repositories for ChopChop:
Users that are interested in ChopChop are comparing it to the libraries listed below
- Awesome cloud enumerator☆991Updated 3 weeks ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆917Updated last week
- Convolutional neural network for analyzing pentest screenshots☆1,134Updated last year
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆415Updated 5 months ago
- A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆399Updated 3 months ago
- Golang client for querying SecurityTrails API data☆545Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆963Updated 2 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆381Updated 5 months ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆946Updated 3 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆503Updated 2 years ago
- 🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.☆863Updated 2 months ago
- Vulnerability Scan with Nuclei☆250Updated 4 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆861Updated last year
- PwnMachine is a self hosting solution based on docker aiming to provide an easy to use pwning station for bug hunters.☆313Updated 7 months ago
- Identify privilege escalation paths within and across different clouds☆684Updated 4 months ago
- Vulnerability assessment and penetration testing automation and reporting platform for teams.☆446Updated 3 months ago
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,129Updated 7 months ago
- Go client to communicate with Chaos DB API.☆694Updated this week
- Heuristic Vulnerable Parameter Scanner☆584Updated last year
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆708Updated 2 years ago
- Fetches javascript file from a list of URLS or subdomains.☆759Updated last year
- VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, i…☆478Updated this week
- Find cloud assets that no one wants exposed 🔎 ☁️☆338Updated 4 years ago
- Private key usage verification☆432Updated 3 months ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆510Updated last year
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆470Updated last year
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆374Updated 3 years ago
- ☆318Updated 2 months ago
- Attack surface detector that identifies endpoints by static analysis☆677Updated this week
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆629Updated last year