snyk-labs / awesome-log4shell

Related projects: ⓘ

• Accenture / jenkins-attack-framework
  ☆554Updated 3 years ago
• krol3 / kubernetes-security-checklist
  Awesome resources about Security in Kubernetes
  ☆40Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆164Updated 2 months ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆58Updated 3 months ago
• mubix / CVE-2021-44228-Log4Shell-Hashes
  Hashes for vulnerable LOG4J versions
  ☆154Updated 2 years ago
• madhuakula / hacker-container
  The Swiss Army Container for Cloud Native Security. Container with all the list of useful tools/commands while hacking and securing Conta…
  ☆261Updated last year
• koenbuyens / oauth-2.0-security-cheat-sheet
  oauth security guidelines
  ☆218Updated 5 years ago
• DataDog / security-labs-pocs
  Proof of concept code for Datadog Security Labs referenced exploits.
  ☆417Updated 11 months ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆79Updated 2 weeks ago
• rmkanda / tools
  Curated list of security tools
  ☆57Updated 8 months ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆129Updated 7 months ago
• silentsignal / burp-log4shell
  Log4Shell scanner for Burp Suite
  ☆481Updated 11 months ago
• m6a-UdS / dvca
  Damn Vulnerable Cloud Application
  ☆183Updated 6 years ago
• DavidDikker / endgame
  An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…
  ☆185Updated 3 years ago
• michelin / ChopChop
  ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
  ☆667Updated 11 months ago
• The-Login / DNS-Analysis-Server
  Tools to assess DNS security.
  ☆146Updated 6 months ago
• NetSPI / aws_consoler
  A utility to convert your AWS CLI credentials into AWS console access.
  ☆212Updated 4 years ago
• NorthwaveSecurity / log4jcheck
  A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.
  ☆126Updated 2 years ago
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆119Updated 2 years ago
• raesene / kube_security_lab
  ☆230Updated last week
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆68Updated last week
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆242Updated last month
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆142Updated 3 years ago
• projectdiscovery / pd-actions
  ☆207Updated this week
• PortSwigger / oauth-scan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆183Updated last year
• Guezone / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆220Updated 2 years ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆132Updated 4 years ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆98Updated last month
• cider-security-research / top-10-cicd-security-risks
  ☆394Updated last year
• back2root / log4shell-rex
  PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs
  ☆293Updated 2 years ago