Paros
A Java based HTTP/HTTPS proxy for assessing web application vulnerability. It supports editing/viewing HTTP messages on-the-fly. Other features include spiders, client certificate, proxy-chaining, intelligent scanning for XSS and SQL injections etc.
FEATURES
SIMILAR TOOLS
Automate version scraping and vulnerability scanning for Ruby on Rails stacks.
A collection of 132 exploits added to Packet Storm in April 2024
A tool that uses NLP and ML to identify potential software vulnerabilities from git commit messages
A tool to find and search for registered CVEs, creating a local CVE database for offline use.
An Open Source supply chain security and auditing tool that tracks projects and dependencies, monitoring for vulnerabilities and issues.
A vulnerability and exposure management platform that unifies security tool data, automates workflows, and provides risk-based prioritization for enterprise vulnerability management programs.
A fully customizable, offensive security reporting solution for pentesters, red teamers, and other security professionals.
A tool for scanning websites with open .git repositories and dumping their content for Bug Hunting/Pentesting Purposes.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.