Alternatives and similar repositories for webappsec-nutshell

Users that are interested in webappsec-nutshell are comparing it to the libraries listed below

• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 9 years ago
• iSECPartners / LibTech-Auditing-Cheatsheet
  ☆198Updated 10 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆111Updated 8 years ago
• nowsecure / mobile-incident-response
  Mobile Incident Response Book
  ☆61Updated 9 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 10 years ago
• OWASP / EnDe
  Encoder, Decoder, Converter, Calculator, TU WAS DU WILLST .. for various codings used in the wild wide web
  ☆41Updated last year
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• strozfriedberg / MAM-Security-Checklist
  Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution
  ☆20Updated 10 years ago
• owtf / owtf-docker
  Docker repository for OWTF (64-bit Kali)
  ☆33Updated 2 months ago
• pentestgeek / scripts
  A collection of useful scripts for penetration testers
  ☆83Updated 13 years ago
• silentsignal / damn-vulnerable-stateful-web-app
  Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe
  ☆14Updated 10 years ago
• JordanMilne / YMail-Pineapple
  Tools for MITMing Yahoo! Mail with a Wifi Pineapple Mark V and Flash
  ☆28Updated 9 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆129Updated 5 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆139Updated 5 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 8 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• markclayton / bumpster
  The Unofficial Burp Extension for DNSDumpster.com
  ☆70Updated 7 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆141Updated last year
• sethsec / Nodejs-SSRF-App
  Nodejs application intentionally vulnerable to SSRF
  ☆42Updated 2 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 11 years ago
• isp1r0 / DVNA
  Damn Vulnerable Node Application
  ☆20Updated 10 years ago
• integrissecurity / carbonator
  Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps a…
  ☆74Updated 7 years ago
• mubix / cfdb
  Common Findings Database
  ☆101Updated 6 years ago
• burp-hash / burp-hash
  ☆32Updated 10 years ago
• wireghoul / doona
  Network based protocol fuzzer
  ☆74Updated 3 years ago
• singe / container-breakouts
  Testing/collecting some container breakouts
  ☆94Updated 6 years ago
• binarymist / HolisticInfoSec-For-WebDevelopers-Fascicle1
  VPS Network Cloud Web Applications
  ☆25Updated 2 months ago
• olliencc / appsec-vulnerability-periodic-table
  Application Security Vulnerability Periodic Table
  ☆14Updated 11 years ago