rfc-st / humble
A humble, and ๐ณ๐ฎ๐๐, security-oriented HTTP headers analyzer.
โ305Updated this week
Alternatives and similar repositories for humble:
Users that are interested in humble are comparing it to the libraries listed below
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applicโฆโ446Updated 11 months ago
- hauditor is a tool designed to analyze the security headers returned by a web page.โ167Updated 8 months ago
- A Powerful Network Reconnaissance Tool for Security Professionalsโ100Updated 2 months ago
- Search for sensitive data in Postman public library.โ202Updated 2 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines foโฆโ343Updated 3 months ago
- Web Security Scannerโ313Updated 10 months ago
- AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.โ69Updated last month
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokensโ154Updated 3 months ago
- An uber fast and simple subdomain enumeration tool using DNS and web requests with support for detecting wildcard DNS records.โ173Updated 10 months ago
- Customized CVE FEED Notifierโ110Updated last week
- The Most Advanced Client-Side Prototype Pollution Scannerโ177Updated this week
- API Security Vulnerability Scanner designed to help you secure your APIs.โ121Updated this week
- Stalker, the Extensible Attack Surface Management tool.โ83Updated this week
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.โ134Updated 3 weeks ago
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.โ209Updated 7 months ago
- Pen Test Report Generation and Assessment Collaborationโ475Updated this week
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for cโฆโ405Updated 2 months ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your ScanningโOn Your Terms. Easily distribute arbitโฆโ380Updated 2 weeks ago
- โ198Updated 10 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesโ216Updated last week
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.โ235Updated last month
- Offline Cybersecurity Knowledge Baseโ142Updated this week
- Search engine for CTF writeups with instant results.โ128Updated 2 weeks ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.โ78Updated last month
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aโฆโ156Updated 4 months ago
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.โ670Updated 5 months ago
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.โ230Updated last year
- Attack surface detector that identifies endpoints by static analysisโ674Updated last week
- AI-powered ffuf wrapperโ301Updated 3 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.โ606Updated this week