Alternatives and similar repositories for WebGoat-Lessons

Users that are interested in WebGoat-Lessons are comparing it to the libraries listed below

• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆281Updated last year
• WebGoat / WebGoat-Legacy
  Legacy WebGoat 6.0 - Deliberately insecure JavaEE application
  ☆328Updated last year
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆203Updated this week
• sqlmapproject / testenv
  A collection of web pages vulnerable to SQL injection flaws
  ☆352Updated 3 years ago
• CSPF-Founder / JavaVulnerableLab
  Vulnerable Java based Web Application
  ☆270Updated last year
• adamdoupe / WackoPicko
  WackoPicko is a vulnerable web application used to test web application vulnerability scanners.
  ☆344Updated last year
• Hackademic / hackademic
  the main hackademic code repository
  ☆324Updated 5 years ago
• scovetta / yasca
  Yet Another Source Code Analyzer
  ☆184Updated 4 years ago
• chuckfw / owaspbwa
  OWASP Broken Web Applications Project
  ☆309Updated last year
• SpiderLabs / MCIR
  The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of co…
  ☆446Updated 5 years ago
• infoslack / docker-dvwa
  Docker image for DVWA(Damn Vulnerable Web Application)
  ☆101Updated 9 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆108Updated 3 years ago
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆111Updated 10 years ago
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆97Updated 12 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆210Updated last year
• allfro / BurpKit
  Next-gen BurpSuite penetration testing tool
  ☆460Updated 10 years ago
• OWASP / WebGoat
  This is a defunct code base. The project is located at: https://github.com/WebGoat
  ☆53Updated 9 years ago
• OWASP / OWASP-WebScarab
  OWASP WebScarab
  ☆617Updated 4 years ago
• mazen160 / struts-pwn
  An exploit for Apache Struts CVE-2017-5638
  ☆441Updated 7 years ago
• NetSPI / JavaSerialKiller
  Burp extension to perform Java Deserialization Attacks
  ☆216Updated 2 years ago
• infosec-au / bugbountydash
  [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd
  ☆194Updated 9 years ago
• sectooladdict / wavsep
  The Web Application Vulnerability Scanner Evaluation Project
  ☆240Updated 3 years ago
• appsecco / vulnerable-apps
  ☆218Updated 3 years ago
• mandatoryprogrammer / xssless
  An automated XSS payload generator written in python.
  ☆314Updated 9 years ago
• ctfs / write-ups-tools
  A collection of tools used to maintain and create CTF write-up folders
  ☆237Updated 8 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆169Updated 9 years ago
• NetSPI / xssValidator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆419Updated 3 years ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆342Updated 3 years ago
• himadriganguly / sqlilabs
  Lab set-up for learning SQL Injection Techniques
  ☆101Updated 5 years ago
• SpiderLabs / CryptOMG
  CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
  ☆193Updated 10 years ago