nicoSWD / asvs-checklist
OWASP Application Security Verification Standard 4.0 Checklist
☆32Updated 5 years ago
Alternatives and similar repositories for asvs-checklist:
Users that are interested in asvs-checklist are comparing it to the libraries listed below
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆138Updated 3 years ago
- ☆90Updated 3 years ago
- AWS Security Checks☆37Updated 7 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- ☆22Updated 2 years ago
- Security checks for http headers and cookies☆24Updated 4 years ago
- ☆58Updated last year
- Virtual Security Operations Center☆50Updated last year
- A simple script that generates an Excel friendly CSV file from an Amass JSON file.☆13Updated 2 years ago
- A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…☆39Updated 3 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆64Updated last year
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆75Updated 2 years ago
- ☆34Updated 4 years ago
- Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters☆14Updated 4 years ago
- ☆110Updated last year
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆39Updated 4 years ago
- Scripts and tools for AWS Pentest☆53Updated 4 years ago
- Fetch the details of assets hosted on AWS.☆86Updated last year
- WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…☆156Updated 11 months ago
- Lab Environment for learning client-side attacks such as CSRF, Clickjacking, XSS, and CORS abuse.☆20Updated 2 years ago
- Penetration Testing Checklist☆35Updated 4 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated last year
- A very vulnerable implementation of a GraphQL API.☆59Updated 3 years ago
- ☆14Updated 2 years ago
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.☆57Updated 2 years ago
- Target practice for ffuf☆62Updated 3 years ago
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…☆124Updated 11 months ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆57Updated 5 years ago
- A simple place to learn XSS☆30Updated 4 years ago
- A tool to evaluate Content Security Policies.☆70Updated 4 years ago