Alternatives and similar repositories for action-octoscan

Users that are interested in action-octoscan are comparing it to the libraries listed below

• synacktiv / DepFuzzer
  ☆64Updated last month
• synacktiv / gh-hijack-runner
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆23Updated 7 months ago
• ANSSI-FR / OSAKA
  Outil de sécurité des architectures kubernetes avancées
  ☆53Updated 6 months ago
• p0dalirius / GeoWordlists
  GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.
  ☆148Updated 3 months ago
• siamthanathack / Passkey-Raider
  Burp Suite extension for testing Passkey systems.
  ☆69Updated 2 months ago
• Syslifters / reptor
  ☆17Updated last month
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆126Updated last month
• pun-private / barbhack2024-web
  ☆14Updated 9 months ago
• synacktiv / captaincredz
  CaptainCredz is a modular and discreet password-spraying tool.
  ☆110Updated 3 weeks ago
• hac01 / gcp-iam-brute
  ☆47Updated 11 months ago
• naacbin / SecLab
  VM Lab for security
  ☆9Updated last year
• LowOrbitSecurity / gubble
  gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…
  ☆55Updated last week
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 10 months ago
• p0dalirius / objectwalker
  A python module to explore the object tree to extract paths to interesting objects in memory.
  ☆93Updated 4 months ago
• p0dalirius / pwndocapi
  A python library to interact with Pwndoc instances for pentest reports generation
  ☆18Updated 2 weeks ago
• LOTTunnels / LOTTunnels.github.io
  ☆99Updated last month
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated last month
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 2 months ago
• synacktiv / octoscan
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆210Updated last month
• grahamhelton / grahamhelton.github.io
  ☆40Updated 9 months ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 4 months ago
• LucasParsy / haccks
  Hacker Animation Cool Console Kryptographic Sequencer (haccks)
  ☆13Updated 7 months ago
• rsenet / apkfram
  apkfram was written in order to help any mobile penetration testers to identify the Framework used to develop the Android application.
  ☆11Updated 7 months ago
• AdnaneKhan / Cacheract
  GitHub Actions Cache Native Malware - for Educational and Research Purposes only.
  ☆65Updated last month
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆37Updated 8 months ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆41Updated last year
• n0tspam / delepwn
  DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…
  ☆33Updated 2 weeks ago
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated 8 months ago
• GONZOsint / trufflehog-explorer
  TruffleHog Explorer, a user-friendly web-based tool to visualize and analyze data extracted using TruffleHog.
  ☆39Updated 4 months ago
• astar-security / Lestat
  Check robustness of your (their) Active Directory accounts passwords
  ☆35Updated 2 months ago