Alternatives and similar repositories for vulnerable-java-application

Users that are interested in vulnerable-java-application are comparing it to the libraries listed below

• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆104Updated 3 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆47Updated last year
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆67Updated 8 months ago
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆47Updated last year
• raesene / k8s_ssrf_portscanner
  ☆31Updated 2 years ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆41Updated last year
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆31Updated 2 months ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆50Updated 3 years ago
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated 2 years ago
• hac01 / gcp-iam-brute
  ☆47Updated 11 months ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• OWASP / owasp-cstg
  ☆36Updated 4 years ago
• NicholasSpringer / thunder-ctf
  GCP cloud security CTF
  ☆44Updated last week
• ofirc / ingress-nightmare
  A Terraform reproducer for IngressNightmare
  ☆25Updated last month
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆49Updated last year
• Macmod / STARS
  A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …
  ☆49Updated 2 years ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 7 months ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆68Updated 2 years ago
• doyensec / Unsafe-Unpacking
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆41Updated 4 months ago
• shoebpate1 / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 4 years ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆133Updated last month
• AnubisSec / GroovyWaiter
  ☆17Updated 2 years ago
• WhiteOakSecurity / GoAWSConsoleSpray
  Tool to spray AWS Console IAM Logins
  ☆29Updated 2 years ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 3 months ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated last year
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• nullenc0de / Cognitohunter
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆20Updated 3 months ago
• grines / scour
  ☆126Updated 10 months ago