spyd3r / owasp-asvs-githubLinks
☆18Updated 5 years ago
Alternatives and similar repositories for owasp-asvs-github
Users that are interested in owasp-asvs-github are comparing it to the libraries listed below
Sorting:
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆63Updated 2 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆93Updated last year
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆83Updated 5 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- A More or less Random Collection of Scripts for security Testing.☆65Updated 3 years ago
- Static security checker for Dockerfiles☆95Updated last year
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆75Updated 4 years ago
- Scripts that we use for pentesting☆42Updated 8 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- Pentester-focused Docker registry tool to enumerate and pull images☆111Updated 5 years ago
- Ruby command-line interface to Burp Suite's REST API☆59Updated 5 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆38Updated 7 years ago
- Tools for AWS forensics☆63Updated 9 years ago
- ☆67Updated 8 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆81Updated 5 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 6 years ago
- Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.☆95Updated last year
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.☆78Updated 4 years ago
- All-in-one tool for managing vulnerability reports from AppSec pipelines☆108Updated 2 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆114Updated 6 years ago
- Route53/CloudFront Vulnerability Assessment Utility☆86Updated last year
- A tool for automatically gathering sensitive information from exposed Jenkins servers☆104Updated 2 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago
- Scans packages in npm and pypi for secrets☆31Updated 5 years ago
- OAuth Security Cheatsheet☆40Updated 11 years ago
- A tool to enumerate S3 buckets manually or via certstream☆82Updated 2 years ago
- An auxiliary spellcheck dictionary that corresponds with the Bishop Fox Cybersecurity Style Guide☆86Updated 2 years ago
- An AWS Lambda vulnerable application written in flask.☆49Updated 7 years ago