metahttp
A bash script that automates the scanning of a target network for HTTP resources through XXE. This script is designed to be used in a penetration testing or vulnerability assessment scenario. It uses the `curl` command to send HTTP requests to a target network and extracts information about the resources found. The script also includes some basic filtering and sorting options to make it easier to analyze the results. This script is intended for use by experienced penetration testers and vulnerability assessors. Please note that this script is for educational purposes only and should not be used to scan networks without permission.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A honeypot system designed to detect and analyze potential security threats
Impost is a powerful network security auditing tool with honey pot and packet sniffer capabilities.
A script for extracting network metadata and fingerprints such as JA3 and HASSH from packet capture files or live network traffic.
Cilium is a networking, observability, and security solution with an eBPF-based dataplane.
A KDE Plasma 4 widget that displays real-time traffic information for active network connections on Linux computers.
Load-balancing solution by Microsoft Azure with global infrastructure and financial guidance.
A specialized packet sniffer for displaying and logging HTTP traffic, designed to capture, parse, and log traffic for later analysis.
OpenSnitch is a GNU/Linux application firewall with interactive outbound connections filtering and system-wide domain blocking capabilities.
Akamai Guardicore Segmentation is a microsegmentation tool that provides network visibility, policy creation, and enforcement to prevent lateral movement and protect critical assets in diverse IT environments.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.