Alternatives and similar repositories for WebGoat

Users that are interested in WebGoat are comparing it to the libraries listed below

• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆201Updated 2 weeks ago
• OWASP / OWASP-Top-10
  OWASP Top Ten
  ☆48Updated 3 years ago
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆97Updated 11 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• infoslack / docker-dvwa
  Docker image for DVWA(Damn Vulnerable Web Application)
  ☆101Updated 8 years ago
• raesene / OWASP_Web_App_Testing_Cheatsheet_Converter
  OWASP Web Application Testing Cheat Sheet converted to tool formats
  ☆25Updated 8 years ago
• g0tmi1k / boot2root-scripts
  Homemade scripts to-do various vulnerable challenges
  ☆77Updated 4 years ago
• OWASP / OWASP-GoatDroid-Project
  OWASP GoatDroid is a fully functional and self-contained training environment for educating developers and testers on Android security. G…
  ☆26Updated 12 years ago
• Rossmairm / PenTools
  This is a bundle of python and bash penetration testing tools for recon and information gathering.
  ☆80Updated 9 years ago
• PacktPublishing / Mastering-Modern-Web-Penetration-Testing
  Code repository for Mastering Modern Web Penetration Testing, published by Packt
  ☆72Updated 2 years ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆87Updated 10 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 9 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated last year
• OWASP / SSVL
  Simple Software Vulnerability Language (SSVL)
  ☆13Updated 10 years ago
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated 10 months ago
• zaproxy / zap-admin
  ZAP Admin
  ☆29Updated this week
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆43Updated 4 years ago
• SpiderLabs / jboss-autopwn
  A JBoss script for obtaining remote shell access
  ☆172Updated 4 years ago
• R3dy / parse-burp
  Burp Scanner XML Parser
  ☆36Updated 10 years ago
• OWASP / OWASPBugBounty
  This is a container of web applications that work with OWASP Bug Bounty for Projects
  ☆32Updated 2 weeks ago
• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆156Updated 4 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆126Updated 11 months ago
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 8 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 5 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 7 years ago
• OWASP / CodeReviewGuide
  Repository for OWASP Code Review document
  ☆16Updated 10 years ago
• rebootuser / Hashmash
  Hashmash is a tool to aid in generating hashes from user supplied values and Epochs
  ☆63Updated 8 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆206Updated 11 months ago
• PortSwigger / httpoxy-scanner
  A Burp Suite extension that checks for the HTTPoxy vulnerability.
  ☆95Updated 3 years ago