Alternatives and similar repositories for security-testing

Users that are interested in security-testing are comparing it to the libraries listed below

• AvalZ / RevOK
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆27Updated last year
• baiduxlab / sgxray
  ☆44Updated 4 years ago
• georlav / objectmap
  A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.
  ☆24Updated 6 years ago
• Yuning-J / VulnerabilityClassifier
  Severity scoring and exploit categorisation for vulnerability reports using machine-learning tools.
  ☆25Updated 2 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆95Updated 2 years ago
• alviser / mitch
  a Machine Learning powered CSRF attacks finding tool
  ☆26Updated 6 years ago
• SunLab-GMU / PySecDB
  The official repository of ICSME'23 paper "Exploring Security Commits in Python"
  ☆18Updated 2 years ago
• vfeedio / pyvfeed
  Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions
  ☆107Updated this week
• lhmtriet / awesome-vulnerability-assessment
  An ever-growing list of resources for data-driven vulnerability assessment and prioritization
  ☆134Updated 2 years ago
• kudelskisecurity / fuzzomatic
  Automatically fuzz Rust projects from scratch
  ☆59Updated 6 months ago
• pentagridsec / 5-AFL-suite-docker
  Dockerfile for AFL++ and helpful other tools
  ☆21Updated 5 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated last year
• 0xbigshaq / apache-afl
  An automated setup for compiling & fuzzing Apache httpd server
  ☆51Updated 2 years ago
• cyware-labs / Threat-Response-Docker
  ☆44Updated 3 years ago
• Rezilion / mi-x
  Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploi…
  ☆141Updated 2 years ago
• s3c2 / UntrustIDE
  A framework for identifying vulnerabilities in VS Code extensions
  ☆18Updated last year
• NUS-Curiosity / VulZoo
  VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo
  ☆66Updated 10 months ago
• o-o-overflow / dc2020q-uploooadit
  HTTP Desync Attack
  ☆28Updated 5 years ago
• Loginsoft-LLC / Linux-Exploit-Detection
  Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma
  ☆21Updated 2 years ago
• mitre / emb3d
  ☆32Updated 3 weeks ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 11 months ago
• cve-search / PyCVESearch
  Python wrapper for the API of cve-search
  ☆127Updated 2 years ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆23Updated 4 years ago
• pentest-a2p2v / pentest-a2p2v-core
  Core A2P2V functionality (command line based)
  ☆68Updated last year
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆47Updated 3 years ago
• IncludeSecurity / RTSPhuzz
  RTSPhuzz - An RTSP Fuzzer written using the Boofuzz framework
  ☆49Updated 2 years ago
• AvalZ / WAF-A-MoLE
  A guided mutation-based fuzzer for ML-based Web Application Firewalls
  ☆196Updated last year
• kppw99 / AutoVAS
  AutoVAS is an automated vulnerability analysis system with a deep learning approach.
  ☆35Updated 4 years ago
• CiscoCXSecurity / presentations
  Presentations from the CX Security Labs team
  ☆35Updated 6 months ago
• 0xbigshaq / redis-afl
  An automated setup for fuzzing Redis w/ AFL++
  ☆35Updated 3 years ago