Alternatives and similar repositories for WebGoat

Users that are interested in WebGoat are comparing it to the libraries listed below

• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆203Updated this week
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆111Updated 10 years ago
• OWASP / OWASP-Top-10
  OWASP Top Ten
  ☆48Updated 4 years ago
• OWASP / SSVL
  Simple Software Vulnerability Language (SSVL)
  ☆13Updated 11 years ago
• owtf / owtf-docker
  Docker repository for OWTF (64-bit Kali)
  ☆34Updated 3 months ago
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆44Updated 5 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆66Updated last year
• infoslack / docker-dvwa
  Docker image for DVWA(Damn Vulnerable Web Application)
  ☆101Updated 9 years ago
• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆162Updated 5 years ago
• godinezj / metasploit-framework
  Metasploit Framework
  ☆26Updated 3 months ago
• Rossmairm / PenTools
  This is a bundle of python and bash penetration testing tools for recon and information gathering.
  ☆80Updated 10 years ago
• siberas / watobo
  ☆90Updated 5 months ago
• wireghoul / sploit-dev
  Exploits and research stuffs
  ☆54Updated 2 weeks ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• OpenSecurityResearch / pentest-scripts
  ☆63Updated 13 years ago
• spoofzu / DeepViolet
  Tool for introspection of SSL\TLS sessions
  ☆142Updated last week
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆87Updated 11 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆129Updated 5 years ago
• mubix / Not-In-Pentesting-Class
  The Dirty Secrets They Didn't Teach You In Pentesting Class
  ☆96Updated 13 years ago
• OpenSecurityResearch / jmsdigger
  JMSDigger is JMS API basedEnterprise Messaging Application assessment tool
  ☆30Updated 11 years ago
• superkojiman / scanreport
  Take output from nmap and turn it into something easily searchable and readable.
  ☆34Updated 9 years ago
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆97Updated 12 years ago
• infobyte / cscan
  Faraday Continuous Scanning
  ☆34Updated 9 years ago
• cameronhotchkies / Absinthe
  A Blind SQL Exploitation application
  ☆79Updated 13 years ago
• macubergeek / gitlist
  ☆43Updated 9 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆57Updated 3 years ago
• Gioyik / getExploit
  Download exploits from exploit-db.com
  ☆47Updated 10 years ago
• Lavakumar / IronWASP
  Source code of IronWASP
  ☆115Updated 12 years ago
• R3dy / parse-burp
  Burp Scanner XML Parser
  ☆36Updated 11 years ago
• SpiderLabs / CryptOMG
  CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
  ☆193Updated 10 years ago