💣 Dockerized penetration-testing/bugbounty/app-sec testing environment
-
Updated
Nov 24, 2021 - Go
💣 Dockerized penetration-testing/bugbounty/app-sec testing environment
A modular bug hunting and web application pentesting framework written in Go
Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.
Interaction-based application security / quality tool (Control Unit)
The BOAST Outpost for AppSec Testing (v0.1.2)
Simply output a random user-agent. Use it with tools that don't have a --random-agent flag. Like `random-agent` or $(random-agent)
Application-embedded connectivity and zero-trust components
AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration testers and bug bounty hunters conducting reconnaissance, AssetViz provides intuitive insights into domain structures for informed decision-making.
Tool for SBOM (Software Bill Of Materials) collection from filesystems & GitHub repositories.
urlyzer is a URL parsing analysis tool.
Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains. It fetches subdomains from various sources [crtsh, hackertargetapi, anubis, alienvault, rappiddns, urlscan ] , saves them to a SQLite database, and can notify updates via Discord.
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Add a description, image, and links to the appsec topic page so that developers can more easily learn about it.
To associate your repository with the appsec topic, visit your repo's landing page and select "manage topics."