Alternatives and similar repositories for WebGoat-Legacy

Users that are interested in WebGoat-Legacy are comparing it to the libraries listed below

• WebGoat / WebGoat-Lessons
  7.x - The WebGoat STABLE lessons supplied by the WebGoat team.
  ☆160Updated 5 years ago
• SpiderLabs / MCIR
  The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of co…
  ☆445Updated 5 years ago
• foxglovesec / JavaUnserializeExploits
  ☆496Updated 9 years ago
• metac0rtex / GitHarvester
  ☆315Updated 9 years ago
• adamdoupe / WackoPicko
  WackoPicko is a vulnerable web application used to test web application vulnerability scanners.
  ☆339Updated last year
• SkyLined / LocalNetworkScanner
  PoC Javascript that scans your local network when you open a webpage
  ☆158Updated 9 years ago
• sectooladdict / wavsep
  The Web Application Vulnerability Scanner Evaluation Project
  ☆238Updated 3 years ago
• RUB-NDS / WS-Attacker
  WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …
  ☆486Updated last year
• NetSPI / xssValidator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆417Updated 3 years ago
• P1kachu / v0lt
  Security CTF Toolkit (Not maintained anymore)
  ☆369Updated 7 years ago
• ironbee / waf-research
  WAF Research
  ☆183Updated 3 years ago
• sqlmapproject / testenv
  A collection of web pages vulnerable to SQL injection flaws
  ☆351Updated 3 years ago
• torque59 / Nosql-Exploitation-Framework
  A Python Framework For NoSQL Scanning and Exploitation
  ☆601Updated 11 months ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆341Updated 2 years ago
• codewatchorg / bypasswaf
  Add headers to all Burp requests to bypass some WAF products
  ☆328Updated 7 years ago
• chaitin / sqlchop
  [DEPRECATED]A novel SQL injection detection engine built on top of SQL tokenizing and syntax analysis.
  ☆252Updated last year
• yoojinl / fuzzdb
  Use https://github.com/fuzzdb-project/fuzzdb project
  ☆95Updated 9 years ago
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆277Updated last year
• dpnishant / raptor
  Web-based Source Code Vulnerability Scanner
  ☆355Updated 8 years ago
• musalbas / heartbleed-masstest
  Multi-threaded tool for scanning many hosts for CVE-2014-0160.
  ☆573Updated 10 years ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆132Updated 3 years ago
• Arachni / arachni-ui-web
  Arachni's Web User Interface.
  ☆233Updated 3 years ago
• apuigsech / seekret
  Go library and command line to seek for secrets on various sources.
  ☆242Updated 6 years ago
• strozfriedberg / xxe-recursive-download
  ☆231Updated 10 years ago
• breenmachine / JavaUnserializeExploits
  ☆133Updated 10 years ago
• jtmelton / appsensor
  A toolkit for building self-defending applications through real-time event detection and response
  ☆285Updated 2 years ago
• mwielgoszewski / jython-burp-api
  Develop Burp extensions in Jython
  ☆179Updated 9 years ago
• OWASP / OWASP-WebScarab
  OWASP WebScarab
  ☆619Updated 4 years ago
• yangbh / Hammer
  A web vulnerability scanner framework
  ☆139Updated 9 years ago
• rapid7 / metasploit-vulnerability-emulator
  Created by Jin Qian via the GitHub Connector
  ☆435Updated 2 years ago