Alternatives and similar repositories for ASST

Users that are interested in ASST are comparing it to the libraries listed below

• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆158Updated last year
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆104Updated last year
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆158Updated 3 years ago
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆181Updated 2 weeks ago
• alb-uss / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆221Updated 3 years ago
• DSecureMe / vmc
  VMC: a Scalable, Open Source and Free Vulnerability Management Platform
  ☆90Updated 3 months ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆124Updated last year
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆197Updated last year
• Patrowl / PatrowlHears
  PatrowlHears - Vulnerability Intelligence Center / Exploits
  ☆163Updated this week
• righettod / toolbox-pentest-web
  Docker toolbox for pentest of web based application.
  ☆151Updated this week
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆134Updated 2 years ago
• cloud-sniper / cloud-sniper
  Cloud Security Operations Orchestrator
  ☆184Updated last year
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 3 years ago
• juanjoSanz / aws-pentesting-lab
  Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet
  ☆187Updated 10 months ago
• sepehrdaddev / zap-scripts
  Zed Attack Proxy Scripts for finding CVEs and Secrets.
  ☆127Updated 2 years ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆99Updated 9 months ago
• OWASP / apicheck
  ☆38Updated 2 months ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• attacksurge / awesome-attack-surface-monitoring
  Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
  ☆393Updated 7 months ago
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• fportantier / vulpy
  Vulnerable Python Application To Learn Secure Development
  ☆105Updated 11 months ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• projectdiscovery / nuclei-action
  Vulnerability Scan with Nuclei
  ☆254Updated 5 months ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆189Updated 3 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆123Updated last year
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆138Updated last year
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆169Updated 3 months ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 3 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆144Updated last month