razorpay / bhadra

Related projects: ⓘ

• amalmurali47 / onaws
  Fetch the details of assets hosted on AWS.
  ☆85Updated 9 months ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆70Updated last year
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆43Updated 11 months ago
• R0X4R / Pinaak
  A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan
  ☆79Updated 3 years ago
• Zomato / vinifera
  A GitHub recon/monitoring tool for finding internal leaks belonging to your organisation.
  ☆90Updated 8 months ago
• codingo / fastsub
  A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.
  ☆57Updated 2 years ago
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆162Updated 4 months ago
• ayushpriya10 / IMDShift
  ☆55Updated last year
• trickest / cloud
  Monitoring the Cloud Landscape
  ☆70Updated last week
• TinderSec / gh-workflow-auditor
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆147Updated 3 weeks ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆119Updated 5 months ago
• certsio / certsio
  ☆60Updated 6 months ago
• PortSwigger / bseept
  Burp Suite Enterprise Edition Power Tools
  ☆16Updated last month
• trickest / enumerepo
  List all public repositories for (valid) GitHub usernames
  ☆67Updated 11 months ago
• OWASP / www-project-asvs-security-evaluation-templates-with-nuclei
  OWASP ASVS Security Evaluation Templates with Nuclei
  ☆16Updated last week
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆95Updated 7 months ago
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆32Updated this week
• blackbird-eu / community-scripts
  A set of open-source community scripts
  ☆61Updated 3 weeks ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆61Updated 11 months ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆34Updated 2 years ago
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated 11 months ago
• Hacking-the-Cloud / htc-ctfs
  Holds the public Hacking the Cloud CTFs.
  ☆50Updated 6 months ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆138Updated 3 years ago
• rohitcoder / hawk-eye
  A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.
  ☆42Updated last week
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆44Updated last year
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆54Updated last year
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆20Updated 2 months ago
• 0xbigshaq / hackmegraph
  a vulnerable GraphQL application
  ☆18Updated 4 years ago
• AdnaneKhan / Gato-X
  GitHub Attack Toolkit - Extreme Edition
  ☆151Updated this week
• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆100Updated 2 months ago