Alternatives and similar repositories for Labs

Users that are interested in Labs are comparing it to the libraries listed below

• optiv / rest-api-goat
  ☆86Updated 2 years ago
• yacwagh / FAAST
  Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
  ☆67Updated 7 months ago
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆145Updated 3 years ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆106Updated 10 months ago
• SirAppSec / bsides-shadow-api
  This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me
  ☆18Updated last year
• nccgroup / ccs
  ☆114Updated 2 years ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆163Updated last month
• tenable / Burp-extension-for-GPT
  an extension for Burp Suite to allow researchers to utilize GPT for analys is of HTTP requests and responses
  ☆112Updated 2 years ago
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆45Updated 2 years ago
• OWASP / www-project-asvs-security-evaluation-templates-with-nuclei
  OWASP ASVS Security Evaluation Templates with Nuclei
  ☆42Updated 3 weeks ago
• psiinon / open-source-llm-scanners
  ☆101Updated last month
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆65Updated last year
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆42Updated 3 weeks ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆140Updated last month
• OWASP / owasp-istg
  The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility t…
  ☆112Updated 4 months ago
• mihir-shah99 / vxdf
  ☆63Updated 6 months ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆70Updated 7 months ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 2 years ago
• nccgroup / cq
  ☆116Updated 2 years ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆23Updated 4 years ago
• mgreiler / secure-code-review-checklist
  ☆194Updated 2 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆144Updated last year
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆28Updated last year
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆280Updated 3 months ago
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆55Updated 2 years ago
• The-Login / DNS-Analysis-Server
  Tools to assess DNS security.
  ☆153Updated last year
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆34Updated 3 years ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆291Updated 3 months ago
• dreadnode / burpference
  A research project to add some brrrrrr to Burp
  ☆196Updated 10 months ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆150Updated 8 months ago