Alternatives and similar repositories for headers:

Users that are interested in headers are comparing it to the libraries listed below

• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆99Updated last year
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆62Updated last year
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 4 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆200Updated 7 months ago
• RUB-NDS / BurpSSOExtension
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆116Updated 3 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• thedeadrobots / pixi
  ☆25Updated 6 years ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆244Updated last year
• FishermansEnemy / bucket_finder
  Amazon bucket brute force tool
  ☆95Updated 11 years ago
• EdOverflow / bug-bounty-responses
  A collection of response templates for invalid bug bounty reports.
  ☆90Updated 6 years ago
• cure53 / mustache-security
  Automatically exported from code.google.com/p/mustache-security
  ☆23Updated 9 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆125Updated 7 months ago
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆93Updated 11 years ago
• cure53 / public-pentesting-reports
  Curated list of public penetration testing reports released by several consulting firms
  ☆47Updated 6 years ago
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 8 years ago
• riramar / hsecscan
  A security scanner for HTTP response headers.
  ☆295Updated 2 years ago
• we45 / ZAP-Mini-Workshop
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Updated 2 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 5 years ago
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆154Updated 2 years ago
• OWASP / owasp-swag
  Swag for the OWASP projects and chapters
  ☆44Updated 3 weeks ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆223Updated 7 months ago
• Probely / security_checklist
  Web Application Security Checklist
  ☆121Updated 3 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆102Updated 2 years ago
• vavkamil / dkimsc4n
  Asynchronous wordlist based DKIM scanner
  ☆58Updated 3 years ago
• arbazkiraak / certasset
  Takes ip range, Scan all open SSL Certs, Grab Cnames
  ☆112Updated 6 years ago
• marco-lancini / docker_burp
  Burp as a Docker Container
  ☆59Updated 4 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 2 years ago
• bonkc / BugBountySubdomains
  Tools to gather subdomains from Bug Bounty programs
  ☆64Updated 6 years ago
• rahulunair / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆27Updated 5 years ago