Alternatives and similar repositories for ASST

Users that are interested in ASST are comparing it to the libraries listed below

• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆163Updated 4 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆277Updated 2 years ago
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆182Updated 3 weeks ago
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆103Updated 2 years ago
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆134Updated 2 years ago
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆271Updated 5 years ago
• mablanco / docker-osmedeus
  Docker image for Osmedeus, a fully automated offensive security tool for reconnaissance and vulnerability scanning
  ☆103Updated 4 months ago
• OWASP / apicheck
  ☆37Updated 10 months ago
• Probely / security_checklist
  Web Application Security Checklist
  ☆134Updated 8 months ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆156Updated last year
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆144Updated last year
• righettod / toolbox-pentest-web
  Docker toolbox for pentest of web based application.
  ☆172Updated this week
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆191Updated last year
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 4 years ago
• alb-uss / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆219Updated 3 years ago
• Patrowl / PatrowlHears
  PatrowlHears - Vulnerability Intelligence Center / Exploits
  ☆165Updated 2 weeks ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆44Updated last year
• juanjoSanz / aws-pentesting-lab
  Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet
  ☆193Updated last year
• DSecureMe / vmc
  VMC: a Scalable, Open Source and Free Vulnerability Management Platform
  ☆91Updated 11 months ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆98Updated last year
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆134Updated 3 years ago
• juerkkil / secheaders
  Python script to check HTTP security headers
  ☆68Updated last month
• brampat / security
  Collection of links to Security stuff
  ☆117Updated 3 months ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆255Updated 2 years ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆187Updated 4 months ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 4 years ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆350Updated 5 years ago
• ksharinarayanan / SourceWolf
  Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥
  ☆156Updated 2 years ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆188Updated 4 years ago
• nicoSWD / asvs-checklist
  OWASP Application Security Verification Standard 4.0 Checklist
  ☆33Updated 6 years ago