Alternatives and similar repositories for fuzz-lightyear

Users that are interested in fuzz-lightyear are comparing it to the libraries listed below

• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 3 years ago
• KissPeter / APIFuzzer
  Fuzz test your application using your OpenAPI or Swagger API definition without coding
  ☆464Updated 10 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆159Updated last year
• ajinabraham / libsast
  Generic SAST Library
  ☆135Updated 7 months ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆278Updated 3 years ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆419Updated 2 years ago
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆165Updated last month
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆406Updated 8 years ago
• microsoft / rest-api-fuzz-testing
  REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…
  ☆265Updated 4 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆184Updated 7 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆141Updated last year
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 5 months ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆150Updated 5 years ago
• nccgroup / requests-racer
  Small Python library that makes it easy to exploit race conditions in web apps with Requests.
  ☆162Updated 2 years ago
• zaproxy / zap-api-python
  ZAP Python API
  ☆202Updated last week
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆240Updated last year
• righettod / poc-graphql
  Research on GraphQL from an AppSec point of view.
  ☆419Updated 2 years ago
• iosifache / semgrep-rules-manager
  Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂
  ☆97Updated 3 weeks ago
• google / gke-auditor
  ☆74Updated 5 years ago
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆191Updated last year
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆211Updated 2 years ago
• elttam / semgrep-rules
  ☆222Updated last month
• tprynn / web-methodology
  Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
  ☆212Updated last year
• fuzzitdev / pythonfuzz
  coverage guided fuzz testing for python
  ☆228Updated 5 years ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆186Updated 4 months ago
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆93Updated last year
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0
  ☆163Updated last month
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆150Updated 7 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆358Updated 5 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆233Updated last year