psiinon / owasp-projects

Related projects ⓘ

Alternatives and complementary repositories for owasp-projects

• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆25Updated 4 months ago
• ayushpriya10 / IMDShift
  ☆55Updated last year
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆39Updated 11 months ago
• SirAppSec / bsides-shadow-api
  This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me
  ☆17Updated 3 months ago
• amroot / amass-to-csv
  A simple script that generates an Excel friendly CSV file from an Amass JSON file.
  ☆13Updated 2 years ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆21Updated last year
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 11 months ago
• wspr-ncsu / github-actions-security-analysis
  ☆10Updated 10 months ago
• RichardoC / gitlab-secrets
  This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…
  ☆39Updated 3 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆98Updated 9 months ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆62Updated last year
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆20Updated last month
• OWASP / secure-coding-practices-quick-reference-guide
  The Secure Coding Practices Quick-reference Guide from OWASP
  ☆32Updated 11 months ago
• offensive-terraform / terraform-aws-ec2-kali-linux
  Offensive Terraform module which creates Kali Linux from the AWS marketplace and installs cloud security tools (Pacu, Cloudsplaining, Sco…
  ☆18Updated 4 years ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆29Updated 2 years ago
• yeswehack / myopenvdp
  MyOpenVDP is a free web application to install a vulnerability disclosure policy or a vulnerability disclosure program on your assets. (V…
  ☆26Updated 3 months ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆45Updated 2 months ago
• hac01 / gcp-iam-brute
  ☆38Updated 5 months ago
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆92Updated 11 months ago
• sensepost / steampipe-plugin-projectdiscovery
  A steampipe plugin to query projectdiscovery.io tools.
  ☆26Updated 3 months ago
• harekrishnarai / Damn-vulnerable-sca
  Damn Vulnerable SCA Application
  ☆15Updated last month
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆27Updated last year
• r3volved / CVEAggregate
  Build a CVE library with aggregated CISA, EPSS and CVSS data
  ☆27Updated last year
• notdls / known-breaches
  Daily updates from leaked data search engines and aggregators
  ☆86Updated last week
• OWASP / wrongsecrets-ctf-party
  Run Capture the Flags and Security Trainings with OWASP WrongSecrets
  ☆43Updated this week
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆33Updated last month
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆36Updated last month
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 4 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆46Updated last year