Alternatives and similar repositories for ReDoS

Users that are interested in ReDoS are comparing it to the libraries listed below

• infosec-au / websec-weekly
  The databases, API's and managers behind https://websecweekly.org
  ☆50Updated 10 years ago
• evilpacket / xss.io
  ☆73Updated 12 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆111Updated 8 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 9 years ago
• dxa4481 / CORS
  JSON API's Are Automatically Protected Against CSRF, And Google Almost Took It Away.
  ☆34Updated 8 years ago
• noxxi / p5-app-dubioushttp
  use ambiguous HTTP to circumvent security systems
  ☆94Updated 2 years ago
• OWASP / SSVL
  Simple Software Vulnerability Language (SSVL)
  ☆13Updated 10 years ago
• skepticfx / domstorm
  A dashboard for interesting DOM tricks/techniques.
  ☆35Updated 5 years ago
• jkingsman / bishop
  Hunt for vulnerable websites as you browse.
  ☆133Updated 8 years ago
• iSECPartners / LibTech-Auditing-Cheatsheet
  ☆198Updated 9 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• cweb / unicode-security-guide
  Unicode Security Guide
  ☆120Updated 8 years ago
• anshumanbh / hodor
  A Scaleable and Asynchronous Framework for Testing Tools built on Kubernetes
  ☆34Updated 8 years ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆127Updated 8 years ago
• neraliu / tainted-phantomjs
  Tainted PhantomJS
  ☆52Updated 10 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 7 years ago
• hack-all-the-things / charsetinspect
  A script that inspects multi-byte character sets looking for characters with specific user-defined properties
  ☆27Updated 9 years ago
• LinkedInAttic / jaqen
  Jaqen - Simple DNS rebinding
  ☆75Updated 7 years ago
• 0xcite / fingerping
  A security tool to fingerprint PNG libraries used by web applications
  ☆81Updated 6 years ago
• siberas / watobo
  ☆90Updated 3 months ago
• wkcaj / safecurl
  SSRF Protection Library for PHP - http://safecurl.fin1te.net
  ☆73Updated 2 years ago
• zmap / ztag
  Tagging and annotation framework for scan data
  ☆101Updated 7 years ago
• cneill / appsec-resources
  Resources for developers and security engineers to learn the ropes of application security
  ☆98Updated 7 years ago
• DanMcInerney / FuzzStrings
  Simple, hand-picked list of fuzz strings
  ☆34Updated 9 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• trailofbits / http-security
  Parse HTTP Security Headers
  ☆40Updated last year
• infosec-au / bugbountydash
  [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd
  ☆194Updated 9 years ago
• melvinsh / vcsmap
  vcsmap is a plugin-based tool to scan public version control systems for sensitive information.
  ☆143Updated 4 years ago
• flabbergastedbd / pocuito
  A tiny chrome extension to record and replay your web application proof-of-concepts.
  ☆20Updated 9 years ago