Alternatives and similar repositories for WAF-A-MoLE

Users that are interested in WAF-A-MoLE are comparing it to the libraries listed below

• u21h2 / AutoSpear
  AutoSpear
  ☆67Updated last year
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆257Updated 11 months ago
• cvebase / cvebase.com
  cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…
  ☆142Updated 4 years ago
• WSP-LAB / FUSE
  A penetration testing tool for finding file upload bugs (NDSS 2020)
  ☆249Updated 4 years ago
• AvalZ / RevOK
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆27Updated last year
• DistriNet / timeless-timing-attacks
  A Python implementation that facilitates finding timeless timing attack vulnerabilities.
  ☆127Updated 5 months ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 2 months ago
• vulsio / go-exploitdb
  Tool for searching Exploits from Exploit Databases, etc.
  ☆290Updated 3 weeks ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆349Updated 2 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆47Updated 3 years ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆417Updated 2 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 5 years ago
• sdnewhop / AISec
  Cybersecurity of Machine Learning and Artificial Intelligence
  ☆70Updated 3 years ago
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 5 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆128Updated 2 years ago
• jangelesg / py3webfuzz
  A Python3 module to assist in fuzzing web applications
  ☆57Updated last year
• chenjj / Awesome-HTTPRequestSmuggling
  A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
  ☆126Updated 3 years ago
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆123Updated this week
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆262Updated 8 months ago
• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆63Updated 4 years ago
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆252Updated this week
• 0xT11 / CVE-POC
  ☆88Updated 5 years ago
• Contrast-Security-OSS / go-test-bench
  Intentionally vulnerable Go web app.
  ☆43Updated 2 weeks ago
• xbow-engineering / validation-benchmarks
  XBOW Validation Benchmarks
  ☆260Updated 4 months ago
• CERTCC / PoC-Exploits
  Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.
  ☆190Updated last year
• andreafioraldi / cve_searchsploit
  Search an exploit in the local exploitdb database by its CVE
  ☆172Updated 2 years ago
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆183Updated this week
• mandiant / route-sixty-sink
  Link sources to sinks in C# applications.
  ☆145Updated 2 years ago
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆74Updated last year