OWASP / Top10Links
Official OWASP Top 10 Document Repository
☆4,610Updated 6 months ago
Alternatives and similar repositories for Top10
Users that are interested in Top10 are comparing it to the libraries listed below
Sorting:
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆8,003Updated last week
- Application Security Verification Standard☆3,026Updated this week
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,544Updated last year
- Git All the Payloads! A collection of web attack payloads.☆3,784Updated 2 years ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,721Updated 2 years ago
- Web application fuzzer☆6,188Updated 9 months ago
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,844Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,906Updated last month
- Web Application Security Scanner Framework☆3,909Updated 2 weeks ago
- OWASP Foundation Web Respository☆1,215Updated 9 months ago
- Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management☆4,044Updated last week
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…☆3,302Updated last month
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,802Updated 3 years ago
- Fast web fuzzer written in Go☆14,066Updated last month
- Advanced vulnerability scanning with Nmap NSE☆3,617Updated 8 months ago
- The ZAP by Checkmarx Core project☆13,673Updated this week
- Open Source Vulnerability Management Platform☆5,431Updated 2 weeks ago
- 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List☆7,139Updated 10 months ago
- OWASP API Security Project☆2,170Updated 5 months ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,675Updated 7 months ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,285Updated this week
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,942Updated last year
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,726Updated 2 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,199Updated 3 months ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,679Updated 5 months ago
- Web and mobile application security training platform☆1,383Updated 11 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆8,261Updated last year
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,617Updated 7 months ago
- In-depth attack surface mapping and asset discovery☆13,051Updated this week
- A curated list of amazingly awesome Burp Extensions☆3,198Updated 3 months ago