Alternatives and similar repositories for SPAudit:

Users that are interested in SPAudit are comparing it to the libraries listed below

• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• pownjs / cdb
  Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …
  ☆73Updated 3 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• secmerc / materialize-threats
  ☆63Updated 2 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆76Updated 2 years ago
• EdOverflow / security-template
  A static website template for security pages.
  ☆50Updated 5 months ago
• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆76Updated 4 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆89Updated last year
• sderosiaux / checklists
  All checklists
  ☆26Updated 5 years ago
• RandoriDev / test-saml-idp
  ☆30Updated 3 years ago
• spyd3r / owasp-asvs-github
  ☆18Updated 4 years ago
• synopsys-sig / tslint-angular-security
  TSLint rules for Angular
  ☆18Updated 6 years ago
• PortSwigger / attack-surface-detector
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆14Updated 3 years ago
• abdilahrf / shania
  Scan secrets from Continuous Integration Build Logs
  ☆52Updated 5 years ago
• mayakacz / presentation-slides
  Slides from presentations I give!
  ☆23Updated 2 months ago
• we45 / ZAP-Mini-Workshop
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Updated 2 years ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 3 years ago
• pownjs / proxy
  Pown Proxy is a versatile web application security testing proxy with cool TUI features.
  ☆60Updated 5 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 5 years ago
• bugbounty-site / GitSecure
  Detect exposed API keys on GitHub commits.
  ☆34Updated 2 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆35Updated 5 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 6 years ago
• faloker / purify
  All-in-one tool for managing vulnerability reports from AppSec pipelines
  ☆105Updated 2 years ago
• cheerscyber / materials
  Materials used by Product Management and Product Marketing
  ☆12Updated 6 years ago
• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆51Updated 4 years ago
• timhudson / jwt-secret
  Bruteforce a JWT against a list of passwords
  ☆72Updated 7 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆62Updated last year
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• ManicodeSecurity / Web-App-PenTesting
  Lab Material for the One-Day Web Application Penetration Testing Fundamentals Course
  ☆8Updated 3 years ago