oshp / headersLinks
An application to catch, search and analyze HTTP secure headers.
☆64Updated 4 years ago
Alternatives and similar repositories for headers
Users that are interested in headers are comparing it to the libraries listed below
Sorting:
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆66Updated 2 years ago
- The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…☆97Updated 12 years ago
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆210Updated last year
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆110Updated 2 years ago
- A security scanner for HTTP response headers.☆300Updated last year
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆186Updated 5 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 3 years ago
- Web Application Security☆130Updated last month
- A collection of response templates for invalid bug bounty reports.☆90Updated 7 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆139Updated 5 years ago
- Amazon bucket brute force tool☆102Updated 12 years ago
- The Secure Coding Framework☆271Updated 5 years ago
- OWASP Testing Guide☆111Updated 10 years ago
- An extension for BurpSuite that highlights SSO messages in Burp's proxy window..☆119Updated 4 years ago
- Ruby command-line interface to Burp Suite's REST API☆58Updated 5 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- Pillage a git repo found in an accessible web root☆61Updated 14 years ago
- Vendor-Neutral Security Tool Automation Controller (over REST)☆28Updated 6 years ago
- Damn Vulnerable eXtensive Training Environment☆108Updated 3 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Updated 6 years ago
- A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.☆41Updated 7 years ago
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆27Updated 7 years ago
- ☆276Updated 4 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆116Updated 6 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆135Updated 2 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆185Updated 3 years ago
- Automatically exported from code.google.com/p/mustache-security☆23Updated 10 years ago
- Amazon S3 bucket spelunking!☆87Updated 8 years ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆165Updated 6 years ago
- Vulnerable OS Collection is a collection of four Ubuntu based OSes containing real world vulnerable web applications.☆58Updated 8 years ago