Alternatives and similar repositories for attack-surface-detector-cli:

Users that are interested in attack-surface-detector-cli are comparing it to the libraries listed below

• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆100Updated last year
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆206Updated 7 months ago
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆128Updated 4 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆86Updated 4 months ago
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆39Updated last year
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆87Updated 4 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆61Updated 4 years ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆181Updated 2 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆203Updated last year
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆97Updated 3 months ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆256Updated 2 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆174Updated 2 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• rinetd / BurpSuite-1
  BurpSuite using the document and some extensions
  ☆68Updated 4 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆90Updated this week
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 4 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆120Updated 2 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆132Updated 3 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆96Updated 2 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆121Updated 2 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆162Updated 10 months ago
• shivsahni / NSBrute
  Python utility to takeover domains vulnerable to AWS NS Takeover
  ☆86Updated 2 years ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆193Updated 10 months ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆120Updated 2 years ago
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆60Updated 2 years ago
• m6a-UdS / dvca
  Damn Vulnerable Cloud Application
  ☆191Updated 6 years ago