nccgroup / raccoon
Salesforce object access auditor
☆109Updated last year
Related projects ⓘ
Alternatives and complementary repositories for raccoon
- ☆109Updated last year
- ☆90Updated 2 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- ☆31Updated 4 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 2 years ago
- AWS Security Checks☆36Updated 6 years ago
- Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…☆74Updated 8 months ago
- Manager of third-party sources of Semgrep rules 🗂☆76Updated 3 months ago
- ☆58Updated last year
- ☆22Updated 2 years ago
- A list of REST API URL paths for use in blackbox API end-point discovery☆25Updated 6 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆74Updated 2 years ago
- ☆144Updated 2 years ago
- Custom scripts for the PIPER Burp extensions.☆97Updated last year
- retrive metadata endpoint data with these one liners.☆37Updated 4 years ago
- Manual JavaScript Linting is a Bug☆49Updated 3 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated last year
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆98Updated 10 months ago
- A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…☆39Updated 3 years ago
- A list of "secrets" from JWT sample code and readme files.☆51Updated 4 years ago
- ☆17Updated 2 years ago
- ☆11Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆39Updated 10 months ago
- The Outlook HTML Leak Test Project☆41Updated 6 years ago
- VHostChecker takes a csv list of targets in the form of domain,ip,port and runs 4 seperate connection checks to get a quick sense of how …☆33Updated last year
- An Evil OIDC Server☆51Updated 2 years ago
- Burp as a Docker Container☆59Updated 4 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- Proof-of-concept CORS exploitation tool.☆34Updated 5 years ago