oshp / oshp-validatorLinks
Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.
☆130Updated 3 weeks ago
Alternatives and similar repositories for oshp-validator
Users that are interested in oshp-validator are comparing it to the libraries listed below
Sorting:
- The OWASP Secure Headers Project☆167Updated this week
- A Broken Application - Very Vulnerable!☆165Updated last week
- OWASP Project Developer Guide - Document and Project Web pages☆112Updated last month
- A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…☆298Updated last year
- Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.☆285Updated last year
- Docker toolbox for pentest of web based application.☆165Updated this week
- ☆124Updated last year
- CLI component of OWASP PurpleTeam☆132Updated last year
- Host and manage multiple Juice Shop instances for security trainings and Capture The Flags☆292Updated last week
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆451Updated last year
- Security Auditor Utility for GraphQL APIs☆480Updated 5 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆46Updated 2 years ago
- ☆82Updated 2 years ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆294Updated last week
- OWASP Foundation Web Respository☆97Updated 6 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆220Updated last month
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆110Updated 7 months ago
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆329Updated this week
- boostsecurityio/lotp☆130Updated 3 months ago
- OWASP Code Review Guide Web Repository☆137Updated 3 years ago
- GraphQL automated security testing toolkit☆322Updated last year
- ☆112Updated 2 years ago
- OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions☆105Updated 2 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆128Updated 2 years ago
- Secret Magpie - Secret Detection Tool☆236Updated last year
- 🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment☆158Updated 3 years ago
- Websec interview questions by tib3rius answered☆309Updated last year
- boostsecurityio/poutine☆308Updated last week
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆521Updated last month
- Check any website (or set of websites) for insecure security headers.☆252Updated 2 years ago