trickest / find-gh-poc

Related projects ⓘ

Alternatives and complementary repositories for find-gh-poc

• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆128Updated last year
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆405Updated 4 months ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆252Updated 4 months ago
• PortSwigger / auth-analyzer
  ☆71Updated 6 months ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆178Updated 2 years ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆195Updated 3 weeks ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆112Updated 2 years ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆180Updated last month
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆116Updated last year
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆198Updated 4 months ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆117Updated last year
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆111Updated last year
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆70Updated 7 months ago
• DevSecOpsDocs / nuclearpond
  Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
  ☆172Updated 10 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆246Updated 6 months ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆169Updated 3 weeks ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆84Updated 5 months ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆155Updated last week
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆60Updated 2 years ago
• assetnote / exploits
  Repository to store exploits created by Assetnotes Security Research team
  ☆174Updated last year
• trickest / mksub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆254Updated last year
• trickest / enumerepo
  List all public repositories for (valid) GitHub usernames
  ☆68Updated last year
• h4wkst3r / SCMKit
  Source Code Management Attack Toolkit
  ☆210Updated 2 years ago
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆85Updated last month
• JetP1ane / Affinis
  Recurrent Neural Network SubDomain Discovery Tool
  ☆89Updated 2 years ago
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆186Updated 4 months ago
• elttam / semgrep-rules
  ☆175Updated 2 weeks ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• dhn / udon
  A simple tool that helps to find assets/domains based on the Google Analytics ID.
  ☆169Updated 6 months ago