Alternatives and similar repositories for OWASP-Testing-Guide

Users that are interested in OWASP-Testing-Guide are comparing it to the libraries listed below

• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆98Updated 11 years ago
• DinisCruz / Book_Software_Quality
  Content for 'Measuring Software Quality using Application Security' book published at LeanPub
  ☆38Updated 8 years ago
• sethlaw / sputr
  Security Payload Unit Test Repository (SPUTR)
  ☆86Updated 2 years ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆194Updated 6 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆127Updated last year
• ing-bank / bdd-mobile-security-automation-framework
  Mobile Security testing Framework
  ☆41Updated 6 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆63Updated 2 years ago
• oshp / headers
  An application to catch, search and analyze HTTP secure headers.
  ☆65Updated 4 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 5 years ago
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆201Updated last week
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆207Updated last year
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆128Updated 4 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆105Updated 3 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆227Updated last year
• we45 / RoboZap
  ☆32Updated 2 years ago
• bonkc / BugBountySubdomains
  Tools to gather subdomains from Bug Bounty programs
  ☆64Updated 7 years ago
• DinisCruz / Book_SecDevOps_Risk_Workflow
  Content for 'JIRA Risk Project' book published at LeanPub
  ☆57Updated 7 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• OWASP / WebGoat.NET
  OWASP WebGoat.NET
  ☆69Updated 9 years ago
• RUB-NDS / BurpSSOExtension
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆118Updated 4 years ago
• debasishm89 / burpy
  Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…
  ☆122Updated 7 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 9 years ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆158Updated 3 months ago
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆79Updated 2 years ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆111Updated 5 years ago
• DefectDojo / Burp-Plugin
  A Burp plugin to export findings to DefectDojo
  ☆30Updated last year
• secdec / adapt
  ADAPT is a tool that performs automated Penetration Testing for WebApps.
  ☆190Updated 5 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆177Updated 2 years ago