Alternatives and similar repositories for attack-surface-detector-zap:

Users that are interested in attack-surface-detector-zap are comparing it to the libraries listed below

• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆91Updated last year
• VirtueSecurity / aws-extender-cli
  AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…
  ☆83Updated 5 years ago
• prevade / cloudjack
  Route53/CloudFront Vulnerability Assessment Utility
  ☆85Updated last year
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• RhinoSecurityLabs / Presentations
  A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
  ☆38Updated 6 years ago
• random-robbie / AWS-Scanner
  Scans a list of websites for Cloudfront or S3 Buckets
  ☆104Updated 3 years ago
• rojan-rijal / Pyrate
  Practice Web App written in python with some vulnerabilities.
  ☆34Updated 4 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 5 years ago
• Ucnt / aws-s3-data-finder
  AWS S3 Sensitive Data Search
  ☆36Updated 3 years ago
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆61Updated 2 years ago
• FishermansEnemy / bucket_finder
  Amazon bucket brute force tool
  ☆99Updated 11 years ago
• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆53Updated 4 years ago
• andresriancho / vpc-vpn-pivot
  Pivot into private VPC networks using a VPN connection
  ☆42Updated 5 years ago
• 0xbharath / slurp-old
  A tool to enumerate S3 buckets manually or via certstream
  ☆82Updated 2 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 6 years ago
• torque59 / AWS-Vulnerable-Lambda
  An AWS Lambda vulnerable application written in flask.
  ☆48Updated 7 years ago
• glen-mac / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆113Updated 6 years ago
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆48Updated 5 years ago
• PinkP4nther / aws-testing-notes
  Notes as I learn basic AWS penetration testing
  ☆67Updated 5 years ago
• EdOverflow / h1-cli
  A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.
  ☆38Updated 6 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• sethlaw / sputr
  Security Payload Unit Test Repository (SPUTR)
  ☆86Updated 2 years ago
• koto / gitpillage
  Pillage a git repo found in an accessible web root
  ☆61Updated 13 years ago
• bugbounty-site / GitSecure
  Detect exposed API keys on GitHub commits.
  ☆34Updated 2 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• radicallyopensecurity / pentesting-scripts
  Scripts that we use for pentesting
  ☆42Updated 8 years ago
• magisterquis / s3finder
  Yet another open S3 bucket finder
  ☆20Updated 7 years ago
• cure53 / public-pentesting-reports
  Curated list of public penetration testing reports released by several consulting firms
  ☆48Updated 7 years ago