spyd3r / owasp-asvs-github
☆18Updated 4 years ago
Alternatives and similar repositories for owasp-asvs-github:
Users that are interested in owasp-asvs-github are comparing it to the libraries listed below
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- Maturity Model Collaborative project☆14Updated 2 years ago
- Scripts that we use for pentesting☆42Updated 8 years ago
- A tool for testing continuous integration (CI) or continuous delivery (CD) system security☆23Updated 11 years ago
- An AWS Lambda vulnerable application written in flask.☆48Updated 7 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆14Updated 3 years ago
- Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly☆12Updated 8 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- ☆28Updated 8 years ago
- Scans packages in npm and pypi for secrets☆30Updated 5 years ago
- A static website template for security pages.☆50Updated 6 months ago
- AWS Security Checks☆37Updated 7 years ago
- An auxiliary spellcheck dictionary that corresponds with the Bishop Fox Cybersecurity Style Guide☆84Updated 2 years ago
- ☆11Updated 8 years ago
- OWASP Threat Dragon with Gitlab Integration☆25Updated 7 years ago
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.☆77Updated 4 years ago
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated last year
- Burp as a Docker Container☆59Updated 4 years ago
- Unofficial api for cve.mitre.org☆41Updated 3 years ago
- Tools for AWS forensics☆64Updated 9 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆111Updated 5 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆82Updated 4 years ago
- Ruby command-line interface to Burp Suite's REST API☆59Updated 4 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆91Updated 11 months ago
- AppSecPipeline Specification for DevOps automation.☆39Updated 2 years ago
- automato should help with automating some of the user-focused enumeration tasks during an internal penetration test.☆72Updated 5 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆80Updated 5 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- A collection of scripts that I've written while pentesting.☆31Updated 6 years ago