synacktiv / action-octoscanLinks
π¦ A GitHub Action that performs a security scan of your GitHub Actions.
β26Updated 9 months ago
Alternatives and similar repositories for action-octoscan
Users that are interested in action-octoscan are comparing it to the libraries listed below
Sorting:
- β80Updated 3 weeks ago
- gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post messβ¦β79Updated 2 months ago
- GitHub Actions Cache Native Malware - for Educational and Research Purposes only.β68Updated 2 weeks ago
- CaptainCredz is a modular and discreet password-spraying tool.β123Updated last month
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.β153Updated 6 months ago
- boostsecurityio/lotpβ132Updated 4 months ago
- An archive of 0day.today exploitsβ155Updated 3 weeks ago
- β104Updated last month
- β41Updated last year
- DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegatβ¦β33Updated 2 weeks ago
- Interactive results explorer and annotation tool for Nosey Parkerβ35Updated last month
- Burp Suite extension for testing Passkey systems.β73Updated 4 months ago
- MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdomaβ¦β78Updated 3 months ago
- A tool for quickly evaluating IAM permissions in AWS.β57Updated last year
- IPSpinner works as a local proxy that redirects requests through external services.β72Updated 5 months ago
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!β93Updated 4 months ago
- SOAPI - The OpenAPI Documentation Scannerβ37Updated 6 months ago
- Creates Kubernetes Golden Tickets through ServiceAccount token forging and user certificate forging.β49Updated 5 months ago
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.β24Updated 10 months ago
- FrogPost: postMessage Security Testing Toolβ94Updated 3 months ago
- Weaponized EvilnoVNC: Scalable and semi-automated MFA-Phishingβ49Updated 5 months ago
- Burp extension for Recursive Request Exploits (RRE) β DEFCON 2025β45Updated last week
- Dredging up secrets from the depths of the file systemβ131Updated 9 months ago
- β37Updated 3 weeks ago
- Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blockingβ145Updated last year
- β33Updated 4 months ago
- Unicode Security Toolkitβ37Updated 10 months ago
- Verizon Burp Extensions: AI Suiteβ137Updated 4 months ago
- Use the GCP testIamPermissions functionality to bruteforce and discover your permissionsβ40Updated 2 months ago
- https://lolad-project.github.io/β80Updated 7 months ago