Alternatives and similar repositories for WebGoat-Legacy

Users that are interested in WebGoat-Legacy are comparing it to the libraries listed below

• SpiderLabs / MCIR
  The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of co…
  ☆446Updated 5 years ago
• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆162Updated 5 years ago
• foxglovesec / JavaUnserializeExploits
  ☆500Updated 9 years ago
• metac0rtex / GitHarvester
  ☆315Updated 9 years ago
• SkyLined / LocalNetworkScanner
  PoC Javascript that scans your local network when you open a webpage
  ☆158Updated 9 years ago
• NetSPI / xssValidator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆419Updated 3 years ago
• adamdoupe / WackoPicko
  WackoPicko is a vulnerable web application used to test web application vulnerability scanners.
  ☆344Updated last year
• RUB-NDS / WS-Attacker
  WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …
  ☆491Updated last year
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆342Updated 3 years ago
• sectooladdict / wavsep
  The Web Application Vulnerability Scanner Evaluation Project
  ☆240Updated 3 years ago
• rapid7 / metasploit-vulnerability-emulator
  Created by Jin Qian via the GitHub Connector
  ☆436Updated 2 years ago
• sqlmapproject / testenv
  A collection of web pages vulnerable to SQL injection flaws
  ☆352Updated 3 years ago
• ironbee / waf-research
  WAF Research
  ☆183Updated 3 years ago
• codewatchorg / bypasswaf
  Add headers to all Burp requests to bypass some WAF products
  ☆330Updated 8 years ago
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆281Updated last year
• OWASP / OWASP-WebScarab
  OWASP WebScarab
  ☆617Updated 4 years ago
• P1kachu / v0lt
  Security CTF Toolkit (Not maintained anymore)
  ☆371Updated 8 years ago
• torque59 / Nosql-Exploitation-Framework
  A Python Framework For NoSQL Scanning and Exploitation
  ☆601Updated last year
• himadriganguly / sqlilabs
  Lab set-up for learning SQL Injection Techniques
  ☆101Updated 5 years ago
• musalbas / heartbleed-masstest
  Multi-threaded tool for scanning many hosts for CVE-2014-0160.
  ☆574Updated 10 years ago
• dpnishant / raptor
  Web-based Source Code Vulnerability Scanner
  ☆353Updated 8 years ago
• julienbedard / browsersploit
  BrowserExploit is an advanced browser exploit pack for doing internal and external pentesting, helping gaining access to internal compute…
  ☆332Updated 8 years ago
• Arachni / arachni-ui-web
  Arachni's Web User Interface.
  ☆232Updated 3 years ago
• mwielgoszewski / jython-burp-api
  Develop Burp extensions in Jython
  ☆180Updated 9 years ago
• allfro / BurpKit
  Next-gen BurpSuite penetration testing tool
  ☆460Updated 10 years ago
• antisnatchor / phishlulz
  ☆338Updated 9 years ago
• chaitin / sqlchop
  [DEPRECATED]A novel SQL injection detection engine built on top of SQL tokenizing and syntax analysis.
  ☆253Updated last year
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆133Updated 4 years ago
• yoojinl / fuzzdb
  Use https://github.com/fuzzdb-project/fuzzdb project
  ☆95Updated 9 years ago
• apuigsech / seekret
  Go library and command line to seek for secrets on various sources.
  ☆242Updated 6 years ago