Alternatives and similar repositories for Top10

Users that are interested in Top10 are comparing it to the libraries listed below

• OWASP / wstg
  The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
  ☆8,003Updated last week
• OWASP / ASVS
  Application Security Verification Standard
  ☆3,026Updated this week
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,544Updated last year
• foospidy / payloads
  Git All the Payloads! A collection of web attack payloads.
  ☆3,784Updated 2 years ago
• andresriancho / w3af
  w3af: web application attack and audit framework, the open source web vulnerability scanner.
  ☆4,721Updated 2 years ago
• xmendez / wfuzz
  Web application fuzzer
  ☆6,188Updated 9 months ago
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆3,844Updated this week
• ticarpi / jwt_tool
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆5,906Updated last month
• Arachni / arachni
  Web Application Security Scanner Framework
  ☆3,909Updated 2 weeks ago
• OWASP / www-project-top-ten
  OWASP Foundation Web Respository
  ☆1,215Updated 9 months ago
• OWASP / Nettacker
  Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
  ☆4,044Updated last week
• arainho / awesome-api-security
  A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…
  ☆3,302Updated last month
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,802Updated 3 years ago
• ffuf / ffuf
  Fast web fuzzer written in Go
  ☆14,066Updated last month
• scipag / vulscan
  Advanced vulnerability scanning with Nmap NSE
  ☆3,617Updated 8 months ago
• zaproxy / zaproxy
  The ZAP by Checkmarx Core project
  ☆13,673Updated this week
• infobyte / faraday
  Open Source Vulnerability Management Platform
  ☆5,431Updated 2 weeks ago
• payloadbox / xss-payload-list
  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
  ☆7,139Updated 10 months ago
• OWASP / API-Security
  OWASP API Security Project
  ☆2,170Updated 5 months ago
• 0xInfection / Awesome-WAF
  🔥 Web-application firewalls (WAFs) from security standpoint.
  ☆6,675Updated 7 months ago
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆5,285Updated this week
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,942Updated last year
• RhinoSecurityLabs / pacu
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆4,726Updated 2 months ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,199Updated 3 months ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,679Updated 5 months ago
• OWASP / SecurityShepherd
  Web and mobile application security training platform
  ☆1,383Updated 11 months ago
• frohoff / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆8,261Updated last year
• infosecn1nja / AD-Attack-Defense
  Attack and defend active directory using modern post exploitation adversary tradecraft activity
  ☆4,617Updated 7 months ago
• owasp-amass / amass
  In-depth attack surface mapping and asset discovery
  ☆13,051Updated this week
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,198Updated 3 months ago