prjblk / wordpress-audit-automation
Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a database.
☆65Updated last month
Alternatives and similar repositories for wordpress-audit-automation:
Users that are interested in wordpress-audit-automation are comparing it to the libraries listed below
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆53Updated last week
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆87Updated last year
- An Incredibly Annoying, Insufferable Authentication Implementation☆31Updated 11 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆124Updated 11 months ago
- ☆139Updated 10 months ago
- A collection of Turbo Intruder scripts.☆54Updated last month
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆120Updated 2 years ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆114Updated 3 months ago
- ☆53Updated last year
- A recon tool that uses ML to predict subdomains. Then returns those that resolve.☆54Updated last week
- Custom scan profiles for use with Burp Suite Pro☆138Updated last year
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 11 months ago
- ☆74Updated 8 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆85Updated 7 months ago
- Finds graphql queries in javascript files☆58Updated 10 months ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆51Updated 2 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆107Updated 2 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆65Updated last year
- Verizon Burp Extensions: AI Suite☆105Updated this week
- ☆81Updated 8 months ago
- A collection of config files for linux focusing on hackthebox theme☆41Updated 3 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- ☆43Updated 2 weeks ago
- SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.☆20Updated last month
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆79Updated last year
- ☆102Updated 8 months ago
- The Search Engine for Cybersecurity☆73Updated 5 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆38Updated 3 months ago
- ☆166Updated 6 months ago
- a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others☆77Updated last year