sqreen / SPAuditLinks
☆39Updated 2 years ago
Alternatives and similar repositories for SPAudit
Users that are interested in SPAudit are comparing it to the libraries listed below
Sorting:
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 4 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆65Updated 2 years ago
- Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …☆73Updated 4 years ago
- All-in-one tool for managing vulnerability reports from AppSec pipelines☆108Updated 2 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆141Updated last year
- Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.☆261Updated 2 years ago
- An Entropy-Based Link Vulnerability Tool☆60Updated 7 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- A Burp plugin to export findings to DefectDojo☆30Updated 2 years ago
- OAuth Security Cheatsheet☆40Updated 11 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Updated 6 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆123Updated 2 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆114Updated 6 years ago
- JavaScript Secure Coding Practices guide☆181Updated 4 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 6 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆106Updated last year
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 6 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆81Updated 5 years ago
- A collection of response templates for invalid bug bounty reports.☆90Updated 7 years ago
- An AWS Lambda vulnerable application written in flask.☆50Updated 8 years ago
- Detect exposed API keys on GitHub commits.☆35Updated 3 years ago
- Amazon bucket brute force tool☆102Updated 12 years ago
- A search engine for content shared publicly via cloud storage services☆102Updated last year
- retrive metadata endpoint data with these one liners.☆41Updated 5 years ago
- Fast browser-based network discovery module☆115Updated 4 years ago
- Archaeologit scans the history of a user's GitHub repositories for a given pattern to find sensitive things.☆143Updated 7 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆93Updated last year
- Application and Service Fingerprinting☆133Updated 2 years ago