oshp / oshp-validator

Related projects ⓘ

Alternatives and complementary repositories for oshp-validator

• OWASP / www-project-security-champions-guidebook
  OWASP Foundation Web Respository
  ☆19Updated last month
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆122Updated 2 years ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆196Updated last month
• Checkmarx / capital
  A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…
  ☆274Updated 7 months ago
• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆135Updated this week
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆384Updated 2 months ago
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆131Updated last week
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆232Updated this week
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆121Updated last year
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆152Updated 3 years ago
• feeltheajf / trufflehog3
  Find secrets in your codebase
  ☆119Updated 2 weeks ago
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆105Updated 3 weeks ago
• nccgroup / ccs
  ☆110Updated last year
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆104Updated 10 months ago
• optiv / rest-api-goat
  ☆71Updated last year
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆101Updated 7 months ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆245Updated last year
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆110Updated last year
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆61Updated 5 months ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆59Updated 3 weeks ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆130Updated 9 months ago
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆398Updated last month
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆45Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆62Updated last year
• secdec / attack-surface-detector-cli
  ☆75Updated 2 years ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 months ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆228Updated last year
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆104Updated last year
• righettod / toolbox-pentest-web
  Docker toolbox for pentest of web based application.
  ☆141Updated this week
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆83Updated this week