Alternatives and similar repositories for Top10:

Users that are interested in Top10 are comparing it to the libraries listed below

• OWASP / wstg
  The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
  ☆7,651Updated last month
• OWASP / API-Security
  OWASP API Security Project
  ☆2,110Updated last month
• OWASP / ASVS
  Application Security Verification Standard
  ☆2,837Updated this week
• owasp-amass / amass
  In-depth attack surface mapping and asset discovery
  ☆12,489Updated this week
• xmendez / wfuzz
  Web application fuzzer
  ☆6,059Updated 6 months ago
• payloadbox / xss-payload-list
  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
  ☆6,718Updated 7 months ago
• zaproxy / zaproxy
  The ZAP by Checkmarx Core project
  ☆13,088Updated this week
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,844Updated 2 months ago
• OWASP / www-project-top-ten
  OWASP Foundation Web Respository
  ☆1,159Updated 5 months ago
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,394Updated last year
• WebGoat / WebGoat
  WebGoat is a deliberately insecure application
  ☆7,256Updated this week
• ffuf / ffuf
  Fast web fuzzer written in Go
  ☆13,446Updated 7 months ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,714Updated 2 years ago
• s0md3v / AwesomeXSS
  Awesome XSS stuff
  ☆4,856Updated 3 months ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,742Updated 3 years ago
• OWASP / Nettacker
  Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
  ☆3,834Updated this week
• arainho / awesome-api-security
  A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…
  ☆3,175Updated 2 months ago
• EdOverflow / bugbounty-cheatsheet
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,032Updated last year
• ticarpi / jwt_tool
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆5,617Updated 6 months ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,517Updated last month
• scipag / vulscan
  Advanced vulnerability scanning with Nmap NSE
  ☆3,556Updated 5 months ago
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,439Updated 2 months ago
• tanprathan / OWASP-Testing-Checklist
  OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…
  ☆1,547Updated 2 years ago
• juliocesarfort / public-pentesting-reports
  A list of public penetration test reports published by several consulting firms and academic security groups.
  ☆8,680Updated 8 months ago
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,163Updated 3 months ago
• payloadbox / sql-injection-payload-list
  🎯 SQL Injection Payload List
  ☆5,233Updated 7 months ago
• projectdiscovery / httpx
  httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
  ☆8,123Updated this week
• projectdiscovery / subfinder
  Fast passive subdomain enumeration tool.
  ☆11,158Updated this week
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,030Updated 2 weeks ago
• aboul3la / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆10,127Updated 6 months ago