synacktiv / action-octoscanLinks
π¦ A GitHub Action that performs a security scan of your GitHub Actions.
β25Updated last year
Alternatives and similar repositories for action-octoscan
Users that are interested in action-octoscan are comparing it to the libraries listed below
Sorting:
- β94Updated last month
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.β27Updated last year
- β92Updated this week
- GitHub Actions Cache Native Malware - for Educational and Research Purposes only.β88Updated 2 weeks ago
- gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post messβ¦β81Updated 8 months ago
- β42Updated 2 months ago
- CaptainCredz is a modular and discreet password-spraying tool.β133Updated 6 months ago
- Interactive results explorer and annotation tool for Nosey Parkerβ52Updated 7 months ago
- Burp Suite extension for testing Passkey systems.β75Updated 10 months ago
- Cloud subdomains identification toolβ62Updated 9 months ago
- β23Updated 4 months ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.β157Updated last year
- SOAPI - The OpenAPI Documentation Scannerβ39Updated 11 months ago
- JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by β¦β115Updated 5 months ago
- A tool for quickly evaluating IAM permissions in AWS.β60Updated 2 years ago
- Creates Kubernetes Golden Tickets through ServiceAccount token forging and user certificate forging.β51Updated 11 months ago
- Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.β75Updated last year
- DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegatβ¦β37Updated 6 months ago
- A modular framework for benchmarking LLMs and agentic strategies on security challenges across HackTheBox, TryHackMe, PortSwigger Labs, Cβ¦β197Updated this week
- Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.β31Updated 9 months ago
- Eve is a JAMF exploitation toolkit used to interact with locally hosted JAMF servers and those hosted on jamfcloud.com.β41Updated 4 months ago
- β16Updated 5 months ago
- Kooky cURL-powered replacement for reverse shell via /dev/tcpβ77Updated 2 weeks ago
- MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdomaβ¦β87Updated 5 months ago
- Python code to Serialize and Unserialize java binary serialization format.β30Updated last month
- boostsecurityio/lotpβ138Updated 2 weeks ago
- Unicode Security Toolkitβ40Updated last year
- A public, open source physical security methodologyβ47Updated last year
- Use the GCP testIamPermissions functionality to bruteforce and discover your permissionsβ45Updated 7 months ago
- Verizon Burp Extensions: AI Suiteβ142Updated 9 months ago