Alternatives and similar repositories for WebGoat-Lessons

Users that are interested in WebGoat-Lessons are comparing it to the libraries listed below

• WebGoat / WebGoat-Legacy
  Legacy WebGoat 6.0 - Deliberately insecure JavaEE application
  ☆327Updated last year
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆270Updated 9 months ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆206Updated 11 months ago
• CSPF-Founder / JavaVulnerableLab
  Vulnerable Java based Web Application
  ☆266Updated 10 months ago
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆97Updated 11 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆105Updated 3 years ago
• NetSPI / JavaSerialKiller
  Burp extension to perform Java Deserialization Attacks
  ☆211Updated last year
• AonCyberLabs / xxe-recursive-download
  ☆231Updated 9 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• scovetta / yasca
  Yet Another Source Code Analyzer
  ☆184Updated 3 years ago
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• SpiderLabs / CryptOMG
  CryptOMG is a configurable CTF style test bed that highlights common flaws in cryptographic implementations.
  ☆193Updated 9 years ago
• mandatoryprogrammer / xssless
  An automated XSS payload generator written in python.
  ☆315Updated 8 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 9 years ago
• adamdoupe / WackoPicko
  WackoPicko is a vulnerable web application used to test web application vulnerability scanners.
  ☆333Updated 11 months ago
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆201Updated 2 weeks ago
• JGillam / burp-co2
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆152Updated last year
• himadriganguly / sqlilabs
  Lab set-up for learning SQL Injection Techniques
  ☆98Updated 4 years ago
• infosec-au / bugbountydash
  [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd
  ☆192Updated 9 years ago
• ajinabraham / Static-DOM-XSS-Scanner
  Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …
  ☆118Updated 10 years ago
• infoslack / docker-dvwa
  Docker image for DVWA(Damn Vulnerable Web Application)
  ☆101Updated 8 years ago
• Hackademic / hackademic
  the main hackademic code repository
  ☆322Updated 4 years ago
• IFGHou / wapiti
  A web-application vulnerability scanner
  ☆117Updated 4 years ago
• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆31Updated 5 years ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆131Updated 4 years ago
• nvisium-jack-mannino / OWASP-GoatDroid-Project
  *This project is no longer maintained* OWASP GoatDroid is a fully functional and self-contained training environment for educating develo…
  ☆242Updated 10 years ago
• NetSPI / xssValidator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆414Updated 3 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆236Updated 6 years ago
• raesene / bWAPP
  ☆142Updated 3 years ago