Alternatives and similar repositories for flask-webgoat:

Users that are interested in flask-webgoat are comparing it to the libraries listed below

• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆94Updated 4 years ago
• LewisArdern / metasecjs
  MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts
  ☆80Updated 2 years ago
• Rhynorater / reports
  ☆59Updated 7 months ago
• lc / jenkinz
  jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.
  ☆67Updated 5 years ago
• TROUBLE-1 / Type-juggling
  Lab that will help you to understand how type juggling vulnerability works.
  ☆22Updated 4 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆45Updated 2 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆31Updated 2 years ago
• janmasarik / bugshop
  ☆44Updated 4 years ago
• rootxharsh / workshoplabs
  Labs from our workshop "Demystifying the server-side".
  ☆17Updated 2 years ago
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆39Updated last year
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆78Updated 7 months ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆134Updated last year
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆48Updated last year
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆84Updated 5 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆61Updated 8 years ago
• honoki / wilson-cloud-respwnder
  WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…
  ☆51Updated 5 months ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• Cache-Money / chronorace
  ☆70Updated 3 years ago
• codingo / Bugcrowd-Talks
  Slide Decks and Supporting Content of talks given for Bugcrowd
  ☆17Updated 5 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆108Updated 8 years ago
• caioluders / PII-Identifier
  Burp Extension to identify PII data
  ☆21Updated 4 years ago
• fellchase / flumberboozle
  Suite of programs meant to aid in bug hunting and security assessments
  ☆77Updated 5 years ago
• synopsys-sig / ATOR-Burp
  ☆78Updated 9 months ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆53Updated 3 years ago
• silentsignal / burp-piper
  Piper Burp Suite Extender plugin
  ☆116Updated 11 months ago
• ndavison / circleci-logs
  CircleCI log and security configuration automations
  ☆22Updated 4 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• Universe1122 / smuggler.py
  HTTP request smuggling tools
  ☆18Updated 4 years ago