Alternatives and similar repositories for WebGoat

Users that are interested in WebGoat are comparing it to the libraries listed below

• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆43Updated 4 years ago
• OWASP / OWASP-Top-10
  OWASP Top Ten
  ☆48Updated 3 years ago
• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆156Updated 4 years ago
• PacktPublishing / Mastering-Modern-Web-Penetration-Testing
  Code repository for Mastering Modern Web Penetration Testing, published by Packt
  ☆72Updated 2 years ago
• OWASP / OWASP-GoatDroid-Project
  OWASP GoatDroid is a fully functional and self-contained training environment for educating developers and testers on Android security. G…
  ☆26Updated 12 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 9 years ago
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆98Updated 11 years ago
• vegabird / xvna
  Extreme Vulnerable Node Application
  ☆95Updated 6 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆105Updated 3 years ago
• siberas / watobo
  ☆90Updated 4 months ago
• OWASP / OWASPBugBounty
  This is a container of web applications that work with OWASP Bug Bounty for Projects
  ☆32Updated last month
• godinezj / metasploit-framework
  Metasploit Framework
  ☆25Updated 7 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 7 years ago
• OWASP / SSVL
  Simple Software Vulnerability Language (SSVL)
  ☆13Updated 10 years ago
• zaproxy / zap-admin
  ZAP Admin
  ☆29Updated this week
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated 10 months ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆87Updated 11 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated last year
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated 11 months ago
• ghorbanzadeh / OWAAT
  OWASP ASVS Assessment Tool
  ☆28Updated 6 years ago
• AonCyberLabs / MAM-Security-Checklist
  Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution
  ☆19Updated 9 years ago
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 8 years ago
• cure53 / Flashbang
  Project "Flashbang" - An open-source Flash-security helper
  ☆205Updated 10 years ago
• nnewsom / webbies
  Collection of tools for web recon and enumeration.
  ☆56Updated 10 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 7 years ago
• TheRook / CSRF-Request-Builder
  ☆79Updated 9 years ago
• SpiderLabs / CryptOMG
  CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
  ☆193Updated 9 years ago
• silentsignal / damn-vulnerable-stateful-web-app
  Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe
  ☆14Updated 9 years ago
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆201Updated last week