Alternatives and similar repositories for fuzz-lightyear

Users that are interested in fuzz-lightyear are comparing it to the libraries listed below

• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• KissPeter / APIFuzzer
  Fuzz test your application using your OpenAPI or Swagger API definition without coding
  ☆459Updated 7 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆153Updated last year
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆276Updated 2 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated 4 months ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆417Updated 2 years ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆403Updated 8 years ago
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆164Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆189Updated last year
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆141Updated last year
• google / gke-auditor
  ☆74Updated 5 years ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆161Updated last week
• elttam / semgrep-rules
  ☆204Updated 11 months ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆210Updated 2 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆239Updated last year
• nccgroup / requests-racer
  Small Python library that makes it easy to exploit race conditions in web apps with Requests.
  ☆160Updated 2 years ago
• ing-bank / bdd-mobile-security-automation-framework
  Mobile Security testing Framework
  ☆41Updated 7 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆232Updated last year
• microsoft / rest-api-fuzz-testing
  REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…
  ☆264Updated 3 years ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆90Updated last year
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆142Updated last year
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆43Updated last week
• righettod / poc-graphql
  Research on GraphQL from an AppSec point of view.
  ☆416Updated 2 years ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆149Updated 5 years ago
• Greenwolf / eslint-security-scanner-configs
  eslintrc.js config files for running static analysis on JavaScript to identify security issues.
  ☆63Updated 5 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 2 years ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆28Updated 4 years ago
• we45 / RoboZap
  ☆32Updated 2 years ago