wireghoul / grauditLinks
grep rough audit - source code auditing tool
☆1,647Updated 3 months ago
Alternatives and similar repositories for graudit
Users that are interested in graudit are comparing it to the libraries listed below
Sorting:
- Notes about attacking Jenkins servers☆2,079Updated last year
- The XSS Hunter service - a portable version of XSSHunter.com☆1,531Updated 2 years ago
- ☆1,130Updated last week
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,441Updated 8 months ago
- Fast GitHub recon tool. Scans for exposed API keys across all of GitHub, not just known repos and orgs. Support for GitHub dorks.☆1,341Updated 2 months ago
- AppSec Ezine Public Repository.☆1,189Updated last week
- SSRF (Server Side Request Forgery) testing resources☆2,430Updated 11 months ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,673Updated 3 weeks ago
- DotDotPwn - The Directory Traversal Fuzzer☆1,081Updated 2 years ago
- Finds unknown classes of injection vulnerabilities☆703Updated 4 months ago
- ☆1,370Updated 2 weeks ago
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,135Updated 6 years ago
- A DNS rebinding attack framework.☆1,185Updated 2 months ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆666Updated 4 years ago
- A curated list of amazingly awesome Burp Extensions☆3,282Updated 7 months ago
- ☆2,288Updated last year
- GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)☆1,543Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆1,103Updated 2 months ago
- Subdomain Takeover tool written in Go☆2,001Updated 2 years ago
- Create tar/zip archives that can exploit directory traversal vulnerabilities☆1,022Updated 4 years ago
- Automatically exported from code.google.com/p/domxsswiki☆540Updated 7 years ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,913Updated last week
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,849Updated 3 years ago
- Automatic SSRF fuzzer and exploitation tool☆3,333Updated 2 weeks ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,750Updated last year
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆980Updated this week
- ☆730Updated 3 years ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,010Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,031Updated last year
- Convolutional neural network for analyzing pentest screenshots☆1,242Updated last year