Scans your Github Actions for security issues
☆113May 24, 2026Updated this week
Alternatives and similar repositories for github-actions-scanner
Users that are interested in github-actions-scanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hands-on practical use of HTTP security headers as browser security controls to help secure web applications☆20May 18, 2026Updated last week
- Mitigate security concerns of Dependency Confusion supply chain security risks☆53Jan 15, 2026Updated 4 months ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆43Updated this week
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆532May 5, 2026Updated 3 weeks ago
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆266Mar 30, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Web cache poisoning vulnerability scanner.☆75May 5, 2022Updated 4 years ago
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆1,158May 14, 2026Updated last week
- Detect SSRF within Caido☆50Apr 17, 2026Updated last month
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆18May 17, 2020Updated 6 years ago
- ☆11Jul 28, 2020Updated 5 years ago
- Professional Wargaming LLM Toolbox☆27Jul 9, 2025Updated 10 months ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆107Dec 18, 2023Updated 2 years ago
- ☆29Dec 26, 2025Updated 5 months ago
- Burp Enterprise Toolkit☆12Feb 25, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Dec 13, 2021Updated 4 years ago
- Tool for fetching all the available waybackmachine snapshot urls☆24Oct 8, 2024Updated last year
- GitHub Actions Cache Native Malware - for Educational and Research Purposes only.☆154May 8, 2026Updated 2 weeks ago
- Security tool against dependency typosquatting attacks☆56May 19, 2026Updated last week
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- Legitimate bug bounty programs value ethical practices and provide clear rewards to researchers for identifying security flaws☆45Sep 22, 2024Updated last year
- How GitHub Actions workflows can be hacked☆183Aug 23, 2024Updated last year
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆89Apr 24, 2026Updated last month
- ESLint plugin with rules for finding security issues in React projects.☆19Jun 28, 2025Updated 10 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Complete source code for tutorial on how to deploy Django to Kubernetes on AWS (EKS, RDS, EFS)☆14Nov 22, 2024Updated last year
- A collection of pen-testing/hacking scripts. Various uses.☆13Oct 24, 2020Updated 5 years ago
- Orchestrate GitHub Actions Security☆325Updated this week
- Discover hidden parameters in Caido☆47Mar 30, 2026Updated last month
- *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.☆13Feb 21, 2022Updated 4 years ago
- ☆15Jun 27, 2020Updated 5 years ago
- This eBPF module will drop any IPv4 packets that have the RFC 3514 "evil bit" set.☆18Jun 16, 2025Updated 11 months ago
- ☆26Feb 3, 2026Updated 3 months ago
- Qualys Jira Connector☆11Apr 29, 2026Updated 3 weeks ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A repository of the 10 million live most popular websites☆45Dec 21, 2022Updated 3 years ago
- ☆22Feb 25, 2026Updated 3 months ago
- Ruggedy Vulnerability Management App☆14Dec 8, 2019Updated 6 years ago
- An improvised Automated Threat Intelligent System with advanced vulnerability scanners and Opensource Intelligence Information gathering …☆10Jan 23, 2019Updated 7 years ago
- Multi-threaded socks proxy checker written in Go!☆47Jan 3, 2021Updated 5 years ago
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆505Jun 27, 2025Updated 11 months ago
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆39May 5, 2024Updated 2 years ago