Alternatives and similar repositories for WebGoat:

Users that are interested in WebGoat are comparing it to the libraries listed below

• OWASP / SSVL
  Simple Software Vulnerability Language (SSVL)
  ☆13Updated 10 years ago
• OWASP / OWASP-Top-10
  OWASP Top Ten
  ☆48Updated 3 years ago
• iriusrisk / RopeyTasks
  Deliberately vulnerable web application
  ☆22Updated 7 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated 8 months ago
• R3dy / parse-burp
  Burp Scanner XML Parser
  ☆36Updated 10 years ago
• owtf / owtf-docker
  Docker repository for OWTF (64-bit Kali)
  ☆33Updated 4 years ago
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• OpenSecurityResearch / jmsdigger
  JMSDigger is JMS API basedEnterprise Messaging Application assessment tool
  ☆31Updated 10 years ago
• PortSwigger / httpoxy-scanner
  A Burp Suite extension that checks for the HTTPoxy vulnerability.
  ☆91Updated 3 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆62Updated last year
• vulnersCom / burp-Dirbuster
  Dirbuster plugin for Burp Suite
  ☆70Updated 7 years ago
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆43Updated 4 years ago
• siberas / watobo
  ☆89Updated 3 weeks ago
• SecurityInnovation / Research
  A repository of public reports, publications, and presentations associated with research performed by Security Engineers at Security In…
  ☆53Updated 5 years ago
• superkojiman / scanreport
  Take output from nmap and turn it into something easily searchable and readable.
  ☆33Updated 8 years ago
• zynga / hiccup
  [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …
  ☆42Updated 6 years ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆110Updated 5 years ago
• johndekroon / serializekiller
  Mass scanner for the Java serialize bug
  ☆151Updated 5 years ago
• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆156Updated 4 years ago
• rebootuser / Hashmash
  Hashmash is a tool to aid in generating hashes from user supplied values and Epochs
  ☆62Updated 8 years ago
• PacktPublishing / Mastering-Modern-Web-Penetration-Testing
  Code repository for Mastering Modern Web Penetration Testing, published by Packt
  ☆72Updated 2 years ago
• ikkisoft / ParrotNG
  ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461
  ☆48Updated 9 years ago
• appsecco / datasploit-ansible
  Ansible Playbook for setting up Datasploit
  ☆14Updated 8 years ago
• SpiderLabs / oracle_pwd_tools
  Oracle Database 12c password brute forcer
  ☆27Updated 9 years ago
• OpenSecurityResearch / pentest-scripts
  ☆63Updated 12 years ago
• GoSecure / security-cheat-sheet
  Minimalist cheat sheet for developpers to write secure code
  ☆54Updated 4 years ago
• superkojiman / rfishell
  Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.
  ☆46Updated 8 years ago
• raesene / OWASP_Web_App_Testing_Cheatsheet_Converter
  OWASP Web Application Testing Cheat Sheet converted to tool formats
  ☆25Updated 8 years ago
• SecarmaLabs / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆44Updated 7 years ago
• Muhammd / ProFTPD-1.3.3a
  ProFTPD IAC Remote Root Exploit
  ☆38Updated 7 years ago