Alternatives and similar repositories for fuzz-lightyear

Users that are interested in fuzz-lightyear are comparing it to the libraries listed below

• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• KissPeter / APIFuzzer
  Fuzz test your application using your OpenAPI or Swagger API definition without coding
  ☆457Updated 6 months ago
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated 3 months ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆276Updated 2 years ago
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆162Updated last year
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆151Updated last year
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆416Updated last year
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆149Updated 5 years ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆400Updated 8 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆180Updated 6 years ago
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆186Updated last year
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆184Updated 3 weeks ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆236Updated last year
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆229Updated last year
• nccgroup / requests-racer
  Small Python library that makes it easy to exploit race conditions in web apps with Requests.
  ☆160Updated 2 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆141Updated last year
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated last month
• microsoft / rest-api-fuzz-testing
  REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…
  ☆264Updated 3 years ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated last year
• elttam / semgrep-rules
  ☆199Updated 10 months ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆159Updated 6 months ago
• Santandersecurityresearch / corsair_scan
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆122Updated 2 years ago
• righettod / poc-graphql
  Research on GraphQL from an AppSec point of view.
  ☆415Updated 2 years ago
• zaproxy / zap-api-python
  ZAP Python API
  ☆197Updated last week
• snyk-labs / exploit-workshop
  A step by step workshop to exploit various vulnerabilities in Node.js and Java applications
  ☆158Updated last year
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆94Updated 11 months ago
• ing-bank / bdd-mobile-security-automation-framework
  Mobile Security testing Framework
  ☆41Updated 7 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆43Updated last month
• Greenwolf / eslint-security-scanner-configs
  eslintrc.js config files for running static analysis on JavaScript to identify security issues.
  ☆62Updated 5 years ago