OWASP / CheatSheetSeriesLinks
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
☆29,905Updated this week
Alternatives and similar repositories for CheatSheetSeries
Users that are interested in CheatSheetSeries are comparing it to the libraries listed below
Sorting:
- Most advanced XSS scanner.☆14,133Updated 2 months ago
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆64,252Updated this week
- Application Security Verification Standard☆3,102Updated last month
- Official OWASP Top 10 Document Repository☆4,688Updated last week
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆8,128Updated 3 weeks ago
- In-depth attack surface mapping and asset discovery☆13,254Updated this week
- Fast web fuzzer written in Go☆14,330Updated 2 months ago
- Checklist of the most important security countermeasures when designing, testing, and releasing your API☆22,902Updated 2 months ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,770Updated 8 months ago
- TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.☆24,659Updated last month
- The ZAP by Checkmarx Core project☆13,848Updated this week
- Nikto web server scanner☆9,451Updated last week
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆68,542Updated this week
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆14,413Updated 2 weeks ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆24,071Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,969Updated 2 months ago
- An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.☆39,821Updated last week
- ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The foc…☆13,955Updated 2 months ago
- Fast passive subdomain enumeration tool.☆11,987Updated last week
- Directory/File, DNS and VHost busting tool written in Go☆12,176Updated last week
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,246Updated 8 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,586Updated last year
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,790Updated last month
- Find secrets with Gitleaks 🔑☆22,223Updated last week
- Security Guide for Developers☆20,986Updated 2 weeks ago
- OWASP Juice Shop: Probably the most modern and sophisticated insecure web application☆11,480Updated this week
- 🐶 A curated list of Web Security materials and resources.☆12,132Updated 2 months ago
- A Workflow Engine for Offensive Security☆5,694Updated 2 months ago
- Awesome XSS stuff☆4,944Updated 8 months ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆12,061Updated this week