Alternatives and similar repositories for cq

Users that are interested in cq are comparing it to the libraries listed below

• nccgroup / ccs
  ☆113Updated 2 years ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆133Updated 2 years ago
• synacktiv / DepFuzzer
  ☆86Updated this week
• ariary / cfuzz
  Command line fuzzer and bruteforcer 🌪 wfuzz for command
  ☆90Updated 3 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 8 months ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆138Updated last week
• OfriOuzan / HardeningMeter
  HardeningMeter is an open-source Python tool carefully designed to comprehensively assess the security hardening of binaries and systems.
  ☆65Updated 10 months ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆70Updated 3 years ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆106Updated 8 months ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆33Updated 7 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated 2 years ago
• 0ca / BoxPwnr
  An experimental project exploring the use of Large Language Models (LLMs) to solve HackTheBox machines autonomously.
  ☆123Updated last week
• Antonlovesdnb / DockerDetectionNotes
  Some of my rough notes for Docker threat detection
  ☆47Updated 2 years ago
• chris-anley / cq
  CQ, a code security scanner
  ☆100Updated last year
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆40Updated 3 months ago
• RootUp / PersonalStuff
  Upload files done during my research.
  ☆166Updated 6 months ago
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆43Updated 2 years ago
• nodyhub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Updated last year
• mandiant / heyserial
  Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…
  ☆144Updated 2 years ago
• Zigrin-Security / CakeFuzzer
  Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …
  ☆104Updated 2 months ago
• Verizon / verizon_burp_extensions_ai
  Verizon Burp Extensions: AI Suite
  ☆138Updated 5 months ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆54Updated 2 years ago
• wavestone-cdt / DEFCON-CICD-pipelines-workshop
  ☆94Updated 3 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆50Updated 2 years ago
• TecR0c / DoubleTrouble
  This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…
  ☆45Updated last year
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆89Updated last year
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• GTFOArgs / GTFOArgs.github.io
  GTFOArgs is a curated list of programs and their associated arguments that can be exploited to gain privileged access or execute arbitrar…
  ☆135Updated last week
• hac01 / gcp-iam-brute
  ☆50Updated last year
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago