Alternatives and similar repositories for cq

Users that are interested in cq are comparing it to the libraries listed below

• synacktiv / DepFuzzer
  ☆64Updated last month
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆131Updated 2 years ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆133Updated last month
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 2 months ago
• OfriOuzan / HardeningMeter
  HardeningMeter is an open-source Python tool carefully designed to comprehensively assess the security hardening of binaries and systems.
  ☆62Updated 6 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆105Updated 4 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆86Updated 10 months ago
• nccgroup / ccs
  ☆110Updated last year
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated last year
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆69Updated 2 years ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆53Updated 2 years ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆35Updated last month
• elttam / rsu-cracker
  ☆33Updated 2 years ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆57Updated last year
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆118Updated last year
• ariary / cfuzz
  Command line fuzzer and bruteforcer 🌪 wfuzz for command
  ☆86Updated 2 years ago
• clearbluejar / cve-markdown-charts
  A simple tool to create mermaid js markdown charts from CVE IDs and CVE keyword searches.
  ☆43Updated 2 years ago
• mandiant / heyserial
  Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…
  ☆142Updated 2 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 4 months ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated last week
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆261Updated 2 months ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆159Updated 6 months ago
• morganc3 / KOAuth
  OAuth 2.0 Dynamic Security Scanner
  ☆33Updated 4 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• wavestone-cdt / DEFCON-CICD-pipelines-workshop
  ☆93Updated 2 years ago
• TecR0c / DoubleTrouble
  This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…
  ☆44Updated last year
• p0dalirius / objectwalker
  A python module to explore the object tree to extract paths to interesting objects in memory.
  ☆93Updated 4 months ago
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆43Updated last year
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year