Alternatives and similar repositories for application-security-handbook

Users that are interested in application-security-handbook are comparing it to the libraries listed below

• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆244Updated 2 years ago
• dreadnode / burpference
  A research project to add some brrrrrr to Burp
  ☆194Updated 9 months ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆146Updated 7 months ago
• Checkmarx / capital
  A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…
  ☆305Updated 3 months ago
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆236Updated last year
• d3lb3 / security-code-review
  My personal collection of resources (mostly tools and training materials) for source code security audits.
  ☆94Updated last year
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆227Updated last week
• ngalongc / AuthzAI
  ☆183Updated last year
• Hackmanit / template-injection-playground
  The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…
  ☆53Updated 4 months ago
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆175Updated last week
• avlidienbrunn / archivealchemist
  Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.
  ☆221Updated 4 months ago
• bugcrowd / templates
  Repository to house markdown templates for researchers
  ☆209Updated last month
• jthack / cewlai
  ai-based domain name generation
  ☆97Updated 9 months ago
• dwisiswant0 / ipfuscator
  A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…
  ☆93Updated 2 years ago
• sysdig / wafer
  ☆218Updated last year
• jhaddix / CSPReconGO
  ☆106Updated last year
• g0ldencybersec / sus_params
  ☆203Updated last year
• avito-tech / deepsecrets
  Secrets scanner that understands code
  ☆191Updated 2 years ago
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆302Updated 2 months ago
• Tib3rius / Turbo-Intruder-Scripts
  A collection of Turbo Intruder scripts.
  ☆66Updated 9 months ago
• harsh-bothra / SecurityStories
  ☆82Updated 2 years ago
• xssdoctor / graphqlMaker
  Finds graphql queries in javascript files
  ☆65Updated last year
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆371Updated last year
• pdelteil / scammy-bbp
  Self-hosted bug bounty programs that are "scammy" or unethical
  ☆148Updated 3 weeks ago
• hakluke / hakscale
  Distribute ordinary bash commands over many systems
  ☆167Updated 3 years ago
• ReversecLabs / damn-vulnerable-llm-agent
  ☆340Updated 5 months ago
• Static-Flow / RepeaterSearch
  This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…
  ☆80Updated 2 years ago
• Arcanum-Sec / arc_pi_taxonomy
  The Arcanum Prompt Injection Taxonomy
  ☆322Updated 3 months ago
• vitorfhc / gecko
  Chrome extension for automating CSPT discovery
  ☆120Updated 5 months ago
• assetnote / newtowner
  Abuse trust-boundaries to bypass firewalls and network controls
  ☆383Updated 4 months ago