Alternatives and similar repositories for Labs

Users that are interested in Labs are comparing it to the libraries listed below

• optiv / rest-api-goat
  ☆84Updated 2 years ago
• yacwagh / FAAST
  Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
  ☆67Updated 8 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆106Updated 11 months ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆144Updated last year
• SirAppSec / bsides-shadow-api
  This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me
  ☆18Updated last year
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆147Updated 3 years ago
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆191Updated last year
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆50Updated 2 years ago
• psiinon / open-source-llm-scanners
  ☆101Updated last month
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆61Updated 4 years ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆23Updated 4 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆44Updated last year
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆33Updated 3 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆70Updated 7 months ago
• nccgroup / ccs
  ☆114Updated 2 years ago
• righettod / toolbox-pentest-web
  Docker toolbox for pentest of web based application.
  ☆173Updated this week
• d3lb3 / security-code-review
  My personal collection of resources (mostly tools and training materials) for source code security audits.
  ☆101Updated last year
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆180Updated this week
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆152Updated 9 months ago
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆65Updated last year
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆140Updated 2 months ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 2 years ago
• iosifache / semgrep-rules-manager
  Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂
  ☆94Updated 3 weeks ago
• tenable / Burp-extension-for-GPT
  an extension for Burp Suite to allow researchers to utilize GPT for analys is of HTTP requests and responses
  ☆112Updated 2 years ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆164Updated 2 months ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆50Updated 2 years ago
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆45Updated 2 years ago
• OWASP / www-project-asvs-security-evaluation-templates-with-nuclei
  OWASP ASVS Security Evaluation Templates with Nuclei
  ☆42Updated last month
• OWASP / owasp-istg
  The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility t…
  ☆113Updated 5 months ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆28Updated last year