Alternatives and similar repositories for GoASQ

Users that are interested in GoASQ are comparing it to the libraries listed below

• GDSSecurity / JSSE_Fortify_SCA_Rules
  Custom Fortify SCA rules to detect common JSSE certification validation flaws
  ☆11Updated 9 years ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆144Updated 8 years ago
• shubhamshubhankar / autoSource
  Automated SonarQube
  ☆72Updated 6 years ago
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 6 years ago
• hakbot / hakbot-origin-controller
  Vendor-Neutral Security Tool Automation Controller (over REST)
  ☆28Updated 6 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆229Updated last year
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 8 years ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆132Updated 3 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆123Updated 7 years ago
• ssexxe / XXEBugFind
  A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications
  ☆72Updated 10 years ago
• GoSecure / break-fast-serial
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆55Updated 8 years ago
• Z-0ne / SCADA-Rules
  Snort rules
  ☆35Updated 6 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 7 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆71Updated 7 years ago
• RUB-NDS / DTD-Attacks
  Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
  ☆55Updated 9 years ago
• thomaspatzke / WASE
  The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
  ☆114Updated 4 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 5 years ago
• ironbee / waf-research
  WAF Research
  ☆180Updated 3 years ago
• evict / poc_CVE-2018-1002105
  PoC for CVE-2018-1002105.
  ☆223Updated 6 years ago
• vankyver / burp-vulners-scanner-old
  Burp scanner plugin based on Vulners.com vulnerability database
  ☆25Updated 8 years ago
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated last year
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated last year
• viperbluff / PortWitness
  Tool for checking Whether a domain or its multiple sub-domains are up and running.
  ☆72Updated 6 years ago
• 0ang3el / HQLi-playground
  ☆46Updated 9 years ago
• zerothoughts / jndipoc
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Updated 9 years ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆74Updated 2 weeks ago
• pwntester / XStreamServer
  RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler
  ☆20Updated 11 years ago
• armourbird / csf
  ArmourBird CSF - Container Security Framework
  ☆44Updated 3 years ago
• mseclab / Burp-PyJFuzz
  Burp Suite plugin which implement PyJFuzz for fuzzing web application.
  ☆56Updated 8 years ago
• SecarmaLabs / IoTChecklist
  Baseline IoT security checklist. Consider security as early in development as possible and reap the rewards.
  ☆30Updated 7 years ago