oshp / headersLinks
An application to catch, search and analyze HTTP secure headers.
☆64Updated 4 years ago
Alternatives and similar repositories for headers
Users that are interested in headers are comparing it to the libraries listed below
Sorting:
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆65Updated 2 years ago
- A security scanner for HTTP response headers.☆301Updated 11 months ago
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆210Updated last year
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆187Updated 4 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 3 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆110Updated 2 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆139Updated 5 years ago
- The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…☆97Updated 12 years ago
- A collection of response templates for invalid bug bounty reports.☆90Updated 7 years ago
- Automatically exported from code.google.com/p/mustache-security☆23Updated 10 years ago
- An extension for BurpSuite that highlights SSO messages in Burp's proxy window..☆118Updated 4 years ago
- Swag for the OWASP projects and chapters☆44Updated 5 months ago
- Amazon S3 bucket spelunking!☆87Updated 8 years ago
- Amazon bucket brute force tool☆102Updated 12 years ago
- OWASP Testing Guide☆110Updated 9 years ago
- Web Application Security☆129Updated 3 weeks ago
- Check any website (or set of websites) for insecure security headers.☆255Updated 2 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Updated 6 years ago
- Content for OWASP Summit 2017 site☆129Updated 5 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆135Updated 2 years ago
- A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.☆41Updated 7 years ago
- A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0☆163Updated last month
- ☆25Updated 7 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆83Updated 5 years ago
- The Secure Coding Framework☆271Updated 5 years ago
- Tools to gather subdomains from Bug Bounty programs☆65Updated 7 years ago
- Ruby command-line interface to Burp Suite's REST API☆58Updated 5 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- All-in-one AWS S3 bucket tool for pentesters.☆73Updated 6 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆141Updated last year