Alternatives and similar repositories for action-octoscan:

Users that are interested in action-octoscan are comparing it to the libraries listed below

• synacktiv / DepFuzzer
  ☆55Updated 2 months ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆112Updated this week
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆40Updated last year
• hac01 / gcp-iam-brute
  ☆42Updated 8 months ago
• AdnaneKhan / Cacheract
  GitHub Actions Cache Native Malware - for Educational and Research Purposes only.
  ☆56Updated 2 weeks ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆104Updated last month
• xanhacks / OffensiveWeb
  Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.
  ☆24Updated 2 months ago
• ANSSI-FR / OSAKA
  Outil de sécurité des architectures kubernetes avancées
  ☆48Updated 3 months ago
• p0dalirius / GeoWordlists
  GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.
  ☆145Updated last week
• synacktiv / octoscan
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆190Updated last month
• padok-team / cognito-scanner
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆102Updated last year
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆63Updated 7 months ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆123Updated 10 months ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆40Updated 3 weeks ago
• naacbin / SecLab
  VM Lab for security
  ☆9Updated 11 months ago
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆36Updated 4 months ago
• RichardoC / gitlab-secrets
  This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…
  ☆45Updated 6 months ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆22Updated 2 months ago
• synacktiv / gh-hijack-runner
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆21Updated 4 months ago
• Acceis / unisec
  Unicode Security Toolkit
  ☆33Updated 4 months ago
• LowOrbitSecurity / gubble
  gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…
  ☆41Updated last month
• hadriansecurity / subwiz
  A recon tool that uses ML to predict subdomains. Then returns those that resolve.
  ☆49Updated last month
• p0dalirius / objectwalker
  A python module to explore the object tree to extract paths to interesting objects in memory.
  ☆88Updated 3 weeks ago
• grahamhelton / grahamhelton.github.io
  ☆40Updated 5 months ago
• ANSSI-FR / shovel
  Web interface to explore Suricata EVE outputs
  ☆48Updated 2 months ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆31Updated last year
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆57Updated last year
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 5 months ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆26Updated 4 months ago