Alternatives and similar repositories for ASST

Users that are interested in ASST are comparing it to the libraries listed below

• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆158Updated 3 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆273Updated 2 years ago
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆183Updated this week
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆132Updated last year
• Probely / security_checklist
  Web Application Security Checklist
  ☆131Updated 3 months ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆158Updated last year
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆105Updated 2 years ago
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆266Updated 4 years ago
• OWASP / Honeypot-Project
  ☆95Updated last month
• DSecureMe / vmc
  VMC: a Scalable, Open Source and Free Vulnerability Management Platform
  ☆91Updated 6 months ago
• alb-uss / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆221Updated 3 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• stevemcilwain / quiver
  Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
  ☆215Updated 5 years ago
• samhaxr / recox
  Master script for web reconnaissance
  ☆320Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆183Updated last year
• OWASP / SecureTea-Project
  The OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)
  ☆297Updated last year
• OWASP / threat-dragon-desktop
  Desktop variant of OWASP Threat Dragon
  ☆77Updated 4 years ago
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆137Updated 3 years ago
• wisec / OWASP-Testing-Guide-v5
  The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and…
  ☆77Updated 5 years ago
• ksharinarayanan / SourceWolf
  Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥
  ☆151Updated last year
• OWASP / www-project-automated-threats-to-web-applications
  OWASP Foundation Web Respository
  ☆71Updated 5 months ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆266Updated 6 months ago
• juanjoSanz / aws-pentesting-lab
  Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet
  ☆188Updated last year
• Patrowl / PatrowlHears
  PatrowlHears - Vulnerability Intelligence Center / Exploits
  ☆165Updated last week
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆139Updated last year
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆252Updated 2 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆135Updated 3 years ago
• OWASP / apicheck
  ☆38Updated 5 months ago
• 0xSearches / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆144Updated 2 years ago
• infinite-omicron / pentesting-checklist
  Penetration Testing Checklist
  ☆36Updated 5 years ago