Alternatives and similar repositories for ASST

Users that are interested in ASST are comparing it to the libraries listed below

• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆160Updated 4 years ago
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆104Updated 2 years ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆158Updated last year
• Patrowl / PatrowlHears
  PatrowlHears - Vulnerability Intelligence Center / Exploits
  ☆165Updated last week
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆183Updated last week
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆131Updated last year
• DSecureMe / vmc
  VMC: a Scalable, Open Source and Free Vulnerability Management Platform
  ☆91Updated 7 months ago
• righettod / toolbox-pentest-web
  Docker toolbox for pentest of web based application.
  ☆166Updated this week
• alb-uss / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆221Updated 3 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆274Updated 2 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆141Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆184Updated last year
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆135Updated 3 years ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆201Updated 3 months ago
• juanjoSanz / aws-pentesting-lab
  Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet
  ☆190Updated last year
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆139Updated 3 years ago
• Probely / security_checklist
  Web Application Security Checklist
  ☆131Updated 4 months ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆43Updated last year
• wisec / OWASP-Testing-Guide-v5
  The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and…
  ☆77Updated 5 years ago
• stevemcilwain / quiver
  Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
  ☆216Updated 5 years ago
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• ksharinarayanan / SourceWolf
  Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥
  ☆151Updated last year
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆80Updated 3 years ago
• samhaxr / recox
  Master script for web reconnaissance
  ☆321Updated last year
• A3h1nt / Subcert
  Subcert is a subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.
  ☆81Updated 4 years ago
• VainlyStrain / Vailyn
  A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
  ☆198Updated 3 years ago
• mablanco / docker-osmedeus
  Docker image for Osmedeus, a fully automated offensive security tool for reconnaissance and vulnerability scanning
  ☆105Updated last week
• OWASP / apicheck
  ☆38Updated 6 months ago
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• 0xSearches / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆144Updated 2 years ago