Alternatives and similar repositories for Labs:

Users that are interested in Labs are comparing it to the libraries listed below

• OWASP / www-project-asvs-security-evaluation-templates-with-nuclei
  OWASP ASVS Security Evaluation Templates with Nuclei
  ☆32Updated last week
• yacwagh / FAAST
  Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
  ☆43Updated last week
• SirAppSec / bsides-shadow-api
  This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me
  ☆18Updated 9 months ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆27Updated 7 months ago
• optiv / rest-api-goat
  ☆78Updated 2 years ago
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 9 months ago
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆19Updated 2 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• psiinon / open-source-llm-scanners
  ☆71Updated last week
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆117Updated last month
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated last year
• OWASP / wrongsecrets-ctf-party
  Run Capture the Flags and Security Trainings with OWASP WrongSecrets
  ☆46Updated last week
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• harekrishnarai / Damn-vulnerable-sca
  Damn Vulnerable SCA Application
  ☆34Updated 2 weeks ago
• dsecuredcom / yataf
  yataf extracts secrets and paths from files or urls - its best used against javascript files
  ☆52Updated 8 months ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆104Updated 3 months ago
• va1da5 / manual-source-code-review
  Regex patterns for manual application source code review
  ☆27Updated 4 years ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆22Updated 3 years ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆47Updated last year
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆43Updated 2 years ago
• righettod / log4shell-analysis
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆31Updated 3 years ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• d3lb3 / security-code-review
  My personal collection of resources (mostly tools and training materials) for source code security audits.
  ☆78Updated 8 months ago
• projectdiscovery / nuclei-templates-labs
  Vulnerable environments paired with ready-to-use Nuclei templates for security testing and learning! 🚀
  ☆89Updated last week
• Arcanum-Sec / arc_pi_taxonomy
  The Arcanum Prompt Injection Taxonomy
  ☆72Updated 3 weeks ago
• BishopFox / llm-testing-findings
  LLM Testing Findings Templates
  ☆72Updated last year
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆36Updated 2 weeks ago
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated last year
• securitycipher / vulnerable-code-snippet
  Sample Vulnerable and Secure Code Snippets for Various Vulnerabilities
  ☆20Updated 10 months ago