MCIR
MCIR is a framework for building code injection vulnerability testbeds. MCIR unites SQLol, XMLmao, ShelLOL and XSSmh together in a magical world of code injection! They can experience the magic of feature sharing. MCIR is designed to be good at making new friends, and they get to share updates to sanitization routines, environmental factor options, and interface tweaks. If you want to make a new friend to join the dancing and singing in the Magical Code Injection Rainbow, you can use any of the existing MCIR friends as a template and rewrite the portion where the friend does its magic, so we can inject ALL the things!
FEATURES
ALTERNATIVES
A tool to capture all the git secrets by leveraging multiple open source git searching tools.
An Open Source supply chain security and auditing tool that tracks projects and dependencies, monitoring for vulnerabilities and issues.
A tool that finds unprotected secrets in container images or file systems, matching against a database of 140 secret types.
A tool for scanning and identifying potential security risks in GitHub organizations, users, and repositories.
A repository of open-source plugins for Rapid7 InsightConnect
A collection of SQL injection cheat sheets for various databases
A tool that detects dangling DNS records in a multi-cloud environment to prevent subdomain takeovers.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.