Alternatives and similar repositories for gSAST

Users that are interested in gSAST are comparing it to the libraries listed below

• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆50Updated 2 years ago
• InitRoot / RouteRunner
  Checks if files is accessible based on the source code.
  ☆16Updated last year
• trickest / safe-harbour
  security.txt collection of most popular world-wide domains
  ☆54Updated last year
• carlospolop / Pastos
  ☆56Updated 2 years ago
• EasyRecon / wappaGo
  ☆57Updated last year
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆72Updated 2 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆117Updated 2 years ago
• brevityinmotion / goodfaith
  Stay within program scope
  ☆37Updated 3 years ago
• 0xb1tByte / eWPTXv1-Journey
  This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurity
  ☆23Updated 5 years ago
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆29Updated 3 years ago
• VitthalS / ivna
  Intentionally Vulnerable Nodejs Application & APIs
  ☆22Updated 3 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• yavolo / Web-CTF-Cheatsheet
  Web CTF CheatSheet 🐈
  ☆34Updated 6 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆61Updated 4 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆62Updated 3 weeks ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆91Updated 2 years ago
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆60Updated 2 years ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 5 years ago
• fuzz-security / Active-Directory-Exploitation-Cheat-Sheet
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆50Updated 5 years ago
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆32Updated 3 years ago
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated last year
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆53Updated 2 years ago
• carlospolop / Gorks
  ☆68Updated 2 years ago
• GoSecure / request-smuggling-workshop
  ☆26Updated 2 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 7 months ago
• daffainfo / my-nuclei-templates
  Some contributions in the nuclei-templates repository
  ☆58Updated 3 years ago
• Static-Flow / RepeaterSearch
  This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…
  ☆79Updated last year
• drak3hft7 / OSCP-Exam-Report-Template
  Template used for my OSCP exam.
  ☆30Updated 3 years ago
• hakluke / dnstrace
  DNS resolution tracing tool
  ☆34Updated 4 years ago