Secure Decisions's repositories
attack-surface-detector-burp
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
attack-surface-detector-zap
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
pen-test-automation
A framework for automating penetration testing using a plugin based architecture
astam-correlator
Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple static/dynamic scans
dotcms-benchmark
Vagrant configuration to setup vulnerable versions of dotCMS for security testing
threat-vector-questionnaire
A Threat generation module that can leverage software requirements to generate threats.
DARPA007-regression
Known content to validate predictor scripts