off-by-slash Logo

off-by-slash

0
Free
Network Security
appsec
apparmor
nginx
penetration-testing
security-research
Visit Website

Burp extension to detect alias traversal via NGINX misconfiguration at scale. This extension is designed to help security researchers and penetration testers identify potential vulnerabilities in NGINX configurations. It works by analyzing the HTTP requests and responses to identify potential alias traversal vulnerabilities. This extension is a powerful tool for anyone who needs to test the security of their NGINX configurations.

FEATURES

ALTERNATIVES

Quad9 Logo
Quad9

A free DNS recursive service that blocks malicious host names and protects user privacy.

Free
Network Security
Suricata Logo
Suricata

Suricata offers real-time intrusion detection, intrusion prevention, and network monitoring.

Free
Network Security
sandmap Logo
sandmap

A simple CLI tool that extends the functionality of Nmap

Free
Network Security
crawley Logo
crawley

A simple web crawler written in Go

Free
Network Security
Yara Python ICAP Server Logo
Yara Python ICAP Server

ICAP Server with Yara scanner for URL and content.

Free
Network Security
Iptables Essentials Logo
Iptables Essentials

Comprehensive guide for Iptables configuration and firewall rules.

Free
Network Security
IVRE (Instrument de veille sur les réseaux extérieurs) or DRUNK (Dynamic Recon of UNKnown networks) Logo
IVRE (Instrument de veille sur les réseaux extérieurs) or DRUNK (Dynamic Recon of UNKnown networks)

A network recon framework including tools for passive and active recon

Free
Network Security
Palo Alto Networks - Prisma SASE Logo
Palo Alto Networks - Prisma SASE

Prisma SASE is a cloud-delivered service integrating network security, SD-WAN, and user experience management for comprehensive protection and optimization of hybrid work environments.

Commercial
Network Security

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Commercial
Application Security
Check Point CloudGuard WAF Logo

Check Point CloudGuard WAF

A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

Commercial
Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Commercial
Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Commercial
Application Security
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security