Alternatives and similar repositories for attack-surface-detector-cli

Users that are interested in attack-surface-detector-cli are comparing it to the libraries listed below

• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆54Updated 2 years ago
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆121Updated 2 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆259Updated 2 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆87Updated 8 months ago
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆88Updated 5 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆63Updated 5 years ago
• rinetd / BurpSuite-1
  BurpSuite using the document and some extensions
  ☆69Updated 4 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆176Updated 2 years ago
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆200Updated last year
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆156Updated 4 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆134Updated 3 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆173Updated 3 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆125Updated 4 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆122Updated 3 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆122Updated last year
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆132Updated 4 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 4 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆203Updated last year
• BBhacKing / jwt_secrets
  A list of "secrets" from JWT sample code and readme files.
  ☆55Updated 4 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆96Updated 2 years ago
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆61Updated 2 years ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆108Updated 6 months ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• PatrikFehrenbach / amass-tools
  ☆108Updated 4 years ago
• silentsignal / burp-piper
  Piper Burp Suite Extender plugin
  ☆122Updated last year