Alternatives and similar repositories for gSAST

Users that are interested in gSAST are comparing it to the libraries listed below

• 0xb1tByte / eWPTXv1-Journey
  This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurity
  ☆23Updated 5 years ago
• InitRoot / RouteRunner
  Checks if files is accessible based on the source code.
  ☆16Updated last year
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆50Updated 2 years ago
• drak3hft7 / OSCP-Exam-Report-Template
  Template used for my OSCP exam.
  ☆29Updated 2 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆53Updated 2 years ago
• VitthalS / ivna
  Intentionally Vulnerable Nodejs Application & APIs
  ☆22Updated 3 years ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆92Updated 2 years ago
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆116Updated last year
• trickest / safe-harbour
  security.txt collection of most popular world-wide domains
  ☆54Updated last year
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆72Updated 2 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆61Updated 3 years ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆29Updated 3 years ago
• Vanshal / AWAE-PREP
  ☆17Updated 4 years ago
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 3 years ago
• carlospolop / Pastos
  ☆56Updated 2 years ago
• EasyRecon / wappaGo
  ☆57Updated last year
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• ihebski / db
  Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]
  ☆29Updated 4 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 5 months ago
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆60Updated 2 years ago
• honoki / bbrf-agents
  A collection of BBRF agents that can be deployed to AWS lambda
  ☆23Updated 7 months ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 4 years ago
• RakeshKengale / RaKKeN
  Information Security Information From Web
  ☆27Updated 9 months ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• fuzz-security / Active-Directory-Exploitation-Cheat-Sheet
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆50Updated 5 years ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆29Updated 2 years ago
• SecAuraYT / OSWE
  Repo for OSWE related video content for @SecAura Youtube Channel
  ☆34Updated 3 years ago