Alternatives and similar repositories for SPAudit

Users that are interested in SPAudit are comparing it to the libraries listed below

• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• EdOverflow / security-template
  A static website template for security pages.
  ☆52Updated 9 months ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆76Updated 3 years ago
• OWASP / packman
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆50Updated 4 years ago
• JLospinoso / unfurl
  An Entropy-Based Link Vulnerability Tool
  ☆60Updated 7 years ago
• anshumanbh / hodor
  A Scaleable and Asynchronous Framework for Testing Tools built on Kubernetes
  ☆35Updated 8 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆39Updated 7 years ago
• mikesamuel / attack-review-testbed
  Make it easy to probe the strengths and weaknesses of a hardened Node.js stack
  ☆19Updated 6 years ago
• abdilahrf / shania
  Scan secrets from Continuous Integration Build Logs
  ☆51Updated 5 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• sc0tfree / netbyte
  Netbyte is a Netcat-style tool that facilitates probing proprietary TCP and UDP services. It is lightweight, fully interactive and provid…
  ☆62Updated 7 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 6 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 4 years ago
• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆76Updated 5 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• parsiya / eslinter
  Manual JavaScript Linting is a Bug
  ☆49Updated 4 years ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 3 years ago
• NetSPI / goat.js
  Tutorial for Node.js security
  ☆21Updated 4 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• bugbounty-site / GitSecure
  Detect exposed API keys on GitHub commits.
  ☆34Updated 2 years ago
• pownjs / cdb
  Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …
  ☆73Updated 3 years ago
• dxa4481 / santaHog
  Scans packages in npm and pypi for secrets
  ☆31Updated 5 years ago
• serain / netmap.js
  Fast browser-based network discovery module
  ☆113Updated 4 years ago
• pownjs / proxy
  Pown Proxy is a versatile web application security testing proxy with cool TUI features.
  ☆60Updated 6 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆40Updated 11 years ago
• shivsahni / NSDetect
  ☆23Updated 2 years ago
• codingo / Bugcrowd-Talks
  Slide Decks and Supporting Content of talks given for Bugcrowd
  ☆17Updated 5 years ago
• PortSwigger / attack-surface-detector
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆14Updated 3 years ago
• phra / nodebuster
  DirBuster for Node.js
  ☆20Updated 6 years ago