nccgroup / raccoon

Related projects ⓘ

Alternatives and complementary repositories for raccoon

• nccgroup / ccs
  ☆109Updated last year
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 2 years ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• OWASP / owasp-cstg
  ☆31Updated 4 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 2 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆36Updated 6 years ago
• BojackThePillager / Slackhound
  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…
  ☆74Updated 8 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆76Updated 3 months ago
• nccgroup / cowcloud
  ☆58Updated last year
• shivsahni / NSDetect
  ☆22Updated 2 years ago
• dewhurstsecurity / api_paths
  A list of REST API URL paths for use in blackbox API end-point discovery
  ☆25Updated 6 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• nccgroup / CollaboratorPlusPlus
  ☆144Updated 2 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year
• random-robbie / metadata-one-liners
  retrive metadata endpoint data with these one liners.
  ☆37Updated 4 years ago
• parsiya / eslinter
  Manual JavaScript Linting is a Bug
  ☆49Updated 3 years ago
• Santandersecurityresearch / corsair_scan
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆122Updated last year
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆98Updated 10 months ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 3 years ago
• BBhacKing / jwt_secrets
  A list of "secrets" from JWT sample code and readme files.
  ☆51Updated 4 years ago
• AnubisSec / GroovyWaiter
  ☆17Updated 2 years ago
• salesforce / lightning-burp
  ☆11Updated last year
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆39Updated 10 months ago
• irsdl / OutlookLeakTest
  The Outlook HTML Leak Test Project
  ☆41Updated 6 years ago
• Static-Flow / vhostChecker
  VHostChecker takes a csv list of targets in the form of domain,ip,port and runs 4 seperate connection checks to get a quick sense of how …
  ☆33Updated last year
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆51Updated 2 years ago
• marco-lancini / docker_burp
  Burp as a Docker Container
  ☆59Updated 4 years ago
• SmeegeSec / Burp-Importer
  Burp Suite Importer - Connect to multiple web servers while populating the sitemap.
  ☆48Updated 4 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago