oshp / oshp-validator
Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.
☆119Updated last week
Alternatives and similar repositories for oshp-validator:
Users that are interested in oshp-validator are comparing it to the libraries listed below
- The OWASP Secure Headers Project☆154Updated this week
- ☆78Updated last year
- Docker toolbox for pentest of web based application.☆150Updated this week
- Security Auditor Utility for GraphQL APIs☆450Updated 2 months ago
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆308Updated this week
- OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions☆104Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆218Updated last week
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆168Updated 2 months ago
- OWASP Foundation Web Respository☆19Updated last month
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆191Updated 8 months ago
- boostsecurityio/lotp☆123Updated last week
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆236Updated last year
- Tools to assess DNS security.☆152Updated last year
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆349Updated 4 months ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations☆306Updated last year
- GraphQL automated security testing toolkit☆315Updated last year
- OWASP Code Review Guide Web Repository☆132Updated 2 years ago
- A streamlined tool for discovering private TLDs for security research.☆190Updated last week
- ☆110Updated last year
- ☆123Updated last year
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆125Updated 2 years ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆449Updated last year
- ☆151Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆157Updated 5 months ago
- API Security Vulnerability Scanner designed to help you secure your APIs.☆131Updated this week
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆116Updated 3 weeks ago
- My personal collection of resources (mostly tools and training materials) for source code security audits.☆76Updated 8 months ago
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆182Updated 7 months ago
- Search for sensitive data in Postman public library.☆204Updated 3 months ago
- ☆187Updated 9 months ago