nccgroup / ccsLinks
β110Updated last year
Alternatives and similar repositories for ccs
Users that are interested in ccs are comparing it to the libraries listed below
Sorting:
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β133Updated last month
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ105Updated 4 months ago
- boostsecurityio/lotpβ126Updated last month
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β41Updated last year
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRFβ58Updated last year
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β118Updated last year
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where wβ¦β108Updated 6 months ago
- ποΈ STRIDE vs. ASVS equivalence tableβ76Updated 9 months ago
- β57Updated 2 years ago
- Protect against subdomain takeoverβ92Updated last year
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.β168Updated 7 months ago
- GCP GOAT is the vulnerable application for learn the GCP Securityβ64Updated last week
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ139Updated 3 years ago
- Blogpost series showcasing interesting cloud - web app security bugsβ49Updated last year
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpointsβ116Updated last year
- Tools to assess DNS security.β152Updated last year
- HASH (HTTP Agnostic Software Honeypot)β137Updated last year
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interestingβ¦β47Updated 9 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.β60Updated 6 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesβ218Updated last month
- β90Updated 3 years ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.β169Updated 3 months ago
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbiβ¦β249Updated 2 weeks ago
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.β102Updated last year
- Nuclei plugins to audit Chrome extensionsβ64Updated 10 months ago
- β137Updated 2 years ago
- β182Updated last month
- β47Updated 11 months ago
- β35Updated 2 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aβ¦β159Updated 6 months ago