Alternatives and similar repositories for ASST

Users that are interested in ASST are comparing it to the libraries listed below

• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆163Updated 4 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆278Updated 3 years ago
• Probely / security_checklist
  Web Application Security Checklist
  ☆135Updated 9 months ago
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆271Updated 5 years ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆99Updated last year
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆183Updated this week
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆102Updated 2 years ago
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆134Updated 2 years ago
• juanjoSanz / aws-pentesting-lab
  Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet
  ☆192Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆191Updated last year
• OWASP / apicheck
  ☆37Updated 11 months ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆156Updated last year
• OWASP / SecureTea-Project
  The OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)
  ☆301Updated 2 years ago
• ksharinarayanan / SourceWolf
  Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥
  ☆156Updated 2 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆44Updated last year
• OWASP / Honeypot-Project
  ☆101Updated 3 weeks ago
• OWASP / threat-dragon-desktop
  Desktop variant of OWASP Threat Dragon
  ☆78Updated 4 years ago
• righettod / toolbox-pentest-web
  Docker toolbox for pentest of web based application.
  ☆174Updated this week
• Patrowl / PatrowlHears
  PatrowlHears - Vulnerability Intelligence Center / Exploits
  ☆166Updated 2 weeks ago
• DSecureMe / vmc
  VMC: a Scalable, Open Source and Free Vulnerability Management Platform
  ☆91Updated last year
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆294Updated 5 months ago
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆82Updated 3 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆134Updated 4 years ago
• infinite-omicron / pentesting-checklist
  Penetration Testing Checklist
  ☆37Updated 5 years ago
• 0xSearches / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆145Updated 3 years ago
• zaproxy / zaproxy-website
  The source of ZAP website
  ☆77Updated last week
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆144Updated 2 years ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆130Updated 2 months ago
• alb-uss / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆262Updated 3 years ago
• samhaxr / recox
  Master script for web reconnaissance
  ☆331Updated last year