FaradayFaraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+1221.49%)
Mutual labels: penetration-testing, vulnerability, infosec, vulnerability-management, security-automation, devsecops
PurifyAll-in-one tool for managing vulnerability reports from AppSec pipelines
Stars: ✭ 72 (-70.25%)
Mutual labels: infosec, vulnerability-management, security-automation, devsecops
Django DefectdojoDefectDojo is an open-source application vulnerability correlation and security orchestration tool.
Stars: ✭ 1,926 (+695.87%)
Mutual labels: vulnerability-management, security-automation, devsecops
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-22.73%)
Mutual labels: infosec, security-automation, devsecops
HuntrVulnerability Database | huntr.dev
Stars: ✭ 136 (-43.8%)
Mutual labels: bug-bounty, vulnerability, vulnerability-management
MixewayHubMixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
Stars: ✭ 80 (-66.94%)
Mutual labels: vulnerability-management, security-automation, devsecops
VuldashVulnerability Dashboard
Stars: ✭ 16 (-93.39%)
Mutual labels: vulnerability, infosec, vulnerability-management
Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (+10.33%)
Mutual labels: vulnerability, infosec, devsecops
DirsearchWeb path scanner
Stars: ✭ 7,246 (+2894.21%)
Mutual labels: penetration-testing, bug-bounty, infosec
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+1321.07%)
Mutual labels: penetration-testing, bug-bounty, infosec
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-82.23%)
Mutual labels: penetration-testing, bug-bounty, infosec
Docker Security Images🔐 Docker Container for Penetration Testing & Security
Stars: ✭ 172 (-28.93%)
Mutual labels: penetration-testing, infosec, devsecops
H4ckerThis repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
Stars: ✭ 10,451 (+4218.6%)
Mutual labels: penetration-testing, vulnerability, vulnerability-management
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-41.32%)
Mutual labels: penetration-testing, bug-bounty, infosec
pentest-reportsCollection of penetration test reports and pentest report templates. Published by the the best security companies in the world.
Stars: ✭ 111 (-54.13%)
Mutual labels: penetration-testing, infosec
S3ScanScript to spider a website and find publicly open S3 buckets
Stars: ✭ 21 (-91.32%)
Mutual labels: penetration-testing, infosec
urldedupePass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
Stars: ✭ 208 (-14.05%)
Mutual labels: penetration-testing, infosec
filter-var-sqliBypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )
Stars: ✭ 29 (-88.02%)
Mutual labels: penetration-testing, bug-bounty
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (-47.93%)
Mutual labels: penetration-testing, infosec
clairvoyanceObtain GraphQL API Schema even if the introspection is not enabled
Stars: ✭ 448 (+85.12%)
Mutual labels: penetration-testing, bug-bounty