nccgroup / ccs
β109Updated last year
Alternatives and similar repositories for ccs:
Users that are interested in ccs are comparing it to the libraries listed below
- boostsecurityio/lotpβ112Updated this week
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β132Updated last year
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ101Updated 3 weeks ago
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β114Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β40Updated last year
- ποΈ STRIDE vs. ASVS equivalence tableβ75Updated 5 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRFβ58Updated last year
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where wβ¦β101Updated 3 months ago
- β58Updated last year
- β115Updated last year
- Nuclei plugins to audit Chrome extensionsβ63Updated 7 months ago
- Tools to assess DNS security.β151Updated 11 months ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ138Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.β88Updated last year
- GCP GOAT is the vulnerable application for learn the GCP Securityβ63Updated last year
- Blogpost series showcasing interesting cloud - web app security bugsβ47Updated last year
- β42Updated 8 months ago
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.β164Updated 3 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to β¦β123Updated 10 months ago
- A GraphQL enumeration and extraction toolβ130Updated 2 years ago
- β133Updated last year
- Manager of third-party sources of Semgrep rules πβ78Updated 6 months ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.β89Updated 11 months ago
- LLM Testing Findings Templatesβ66Updated last year
- β55Updated 2 months ago
- Protect against subdomain takeoverβ92Updated 8 months ago
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpointsβ113Updated last year
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services β¦β49Updated last year
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find entβ¦β119Updated 2 years ago
- β163Updated 5 months ago