Alternatives and similar repositories for WAF-A-MoLE

Users that are interested in WAF-A-MoLE are comparing it to the libraries listed below

• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆258Updated last year
• u21h2 / AutoSpear
  AutoSpear
  ☆68Updated last year
• cvebase / cvebase.com
  cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…
  ☆142Updated 4 years ago
• WSP-LAB / FUSE
  A penetration testing tool for finding file upload bugs (NDSS 2020)
  ☆250Updated 4 years ago
• AvalZ / RevOK
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆27Updated last year
• DistriNet / timeless-timing-attacks
  A Python implementation that facilitates finding timeless timing attack vulnerabilities.
  ☆127Updated 6 months ago
• whitesquirrell / C0deVari4nt
  A variant analysis and visualisation tool that scans codebases for similar vulnerabilities
  ☆73Updated 3 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆47Updated 3 years ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆418Updated 2 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 3 months ago
• vulsio / go-exploitdb
  Tool for searching Exploits from Exploit Databases, etc.
  ☆290Updated this week
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆349Updated 2 years ago
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 5 years ago
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆264Updated 8 months ago
• chenjj / Awesome-HTTPRequestSmuggling
  A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
  ☆126Updated 3 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆128Updated 2 years ago
• jangelesg / py3webfuzz
  A Python3 module to assist in fuzzing web applications
  ☆57Updated last year
• elttam / semgrep-rules
  ☆204Updated last year
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆123Updated this week
• andreafioraldi / cve_searchsploit
  Search an exploit in the local exploitdb database by its CVE
  ☆172Updated 3 years ago
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆155Updated 3 months ago
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆41Updated 4 months ago
• knqyf263 / dnspooq
  DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)
  ☆100Updated 4 years ago
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆43Updated 2 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 5 years ago
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆183Updated 2 weeks ago
• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆63Updated 4 years ago
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆253Updated this week