Alternatives and similar repositories for gSAST

Users that are interested in gSAST are comparing it to the libraries listed below

• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆50Updated 3 years ago
• carlospolop / Pastos
  ☆56Updated 3 years ago
• InitRoot / RouteRunner
  Checks if files is accessible based on the source code.
  ☆16Updated last year
• EasyRecon / wappaGo
  ☆57Updated last year
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆91Updated 2 years ago
• brevityinmotion / goodfaith
  Stay within program scope
  ☆37Updated 3 years ago
• trickest / safe-harbour
  security.txt collection of most popular world-wide domains
  ☆54Updated 2 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆73Updated 2 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆54Updated 2 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆62Updated 2 months ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆76Updated 3 years ago
• PortSwigger / ator
  ☆31Updated last year
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆118Updated 2 years ago
• honoki / bbrf-agents
  A collection of BBRF agents that can be deployed to AWS lambda
  ☆23Updated 10 months ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆51Updated 3 years ago
• ApexPredator-InfoSec / AWAE-OSWE
  Review of AWAE.OSWE
  ☆31Updated 3 years ago
• reconmap / rest-api
  REST API backend for Reconmap
  ☆47Updated last week
• DK9510 / web-app-exploitation
  ☆18Updated 3 years ago
• VitthalS / ivna
  Intentionally Vulnerable Nodejs Application & APIs
  ☆22Updated 3 years ago
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆60Updated 2 years ago
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆29Updated 4 years ago
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆94Updated last month
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• yavolo / Web-CTF-Cheatsheet
  Web CTF CheatSheet 🐈
  ☆34Updated 6 years ago
• k3nundrum / CRTP
  Notes for CRTP
  ☆41Updated 4 years ago
• 0xb1tByte / eWPTXv1-Journey
  This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurity
  ☆23Updated 5 years ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆70Updated 3 years ago
• carlospolop / Gorks
  ☆66Updated 2 years ago
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆30Updated 3 years ago
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆59Updated 5 years ago