Alternatives and similar repositories for WebGoat-Legacy

Users that are interested in WebGoat-Legacy are comparing it to the libraries listed below

• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆156Updated 4 years ago
• foxglovesec / JavaUnserializeExploits
  ☆495Updated 9 years ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆339Updated 2 years ago
• metac0rtex / GitHarvester
  ☆311Updated 9 years ago
• adamdoupe / WackoPicko
  WackoPicko is a vulnerable web application used to test web application vulnerability scanners.
  ☆333Updated last year
• sqlmapproject / testenv
  A collection of web pages vulnerable to SQL injection flaws
  ☆347Updated 3 years ago
• allfro / BurpKit
  Next-gen BurpSuite penetration testing tool
  ☆461Updated 9 years ago
• RUB-NDS / WS-Attacker
  WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …
  ☆479Updated 8 months ago
• SpiderLabs / MCIR
  The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of co…
  ☆442Updated 4 years ago
• SkyLined / LocalNetworkScanner
  PoC Javascript that scans your local network when you open a webpage
  ☆157Updated 9 years ago
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆272Updated 10 months ago
• breenmachine / JavaUnserializeExploits
  ☆133Updated 9 years ago
• apuigsech / seekret
  Go library and command line to seek for secrets on various sources.
  ☆241Updated 5 years ago
• mwielgoszewski / jython-burp-api
  Develop Burp extensions in Jython
  ☆178Updated 8 years ago
• yoojinl / fuzzdb
  Use https://github.com/fuzzdb-project/fuzzdb project
  ☆94Updated 9 years ago
• infosec-au / bugbountydash
  [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd
  ☆192Updated 9 years ago
• PaulSec / HQLmap
  (Deprecated) HQLmap, Automatic tool to exploit HQL injections
  ☆230Updated 5 years ago
• codewatchorg / bypasswaf
  Add headers to all Burp requests to bypass some WAF products
  ☆329Updated 7 years ago
• himadriganguly / sqlilabs
  Lab set-up for learning SQL Injection Techniques
  ☆99Updated 4 years ago
• ironbee / waf-research
  WAF Research
  ☆180Updated 3 years ago
• sea-god / gitscan
  ☆70Updated 8 years ago
• dpnishant / jsprime
  a javascript static security analysis tool
  ☆590Updated 10 years ago
• sectooladdict / wavsep
  The Web Application Vulnerability Scanner Evaluation Project
  ☆233Updated 2 years ago
• Hackademic / hackademic
  the main hackademic code repository
  ☆322Updated 4 years ago
• fcavallarin / htcap
  htcap is a web application scanner able to crawl single page application (SPA) recursively by intercepting ajax calls and DOM changes.
  ☆621Updated 3 years ago
• rapid7 / metasploit-vulnerability-emulator
  Created by Jin Qian via the GitHub Connector
  ☆434Updated last year
• jtmelton / appsensor
  A toolkit for building self-defending applications through real-time event detection and response
  ☆282Updated 2 years ago
• torque59 / Nosql-Exploitation-Framework
  A Python Framework For NoSQL Scanning and Exploitation
  ☆602Updated 6 months ago
• yaseng / pentest
  some pentest scripts & tools by yaseng@uauc.net
  ☆148Updated 5 years ago
• subgraph / Vega
  Subgraph Vega
  ☆361Updated 4 years ago