Alternatives and similar repositories for webappsec-nutshell

Users that are interested in webappsec-nutshell are comparing it to the libraries listed below

• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 9 years ago
• iSECPartners / LibTech-Auditing-Cheatsheet
  ☆198Updated 9 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆111Updated 8 years ago
• binarymist / HolisticInfoSec-For-WebDevelopers-Fascicle0
  Overview Tooling Process Physical People
  ☆48Updated last month
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• isp1r0 / DVNA
  Damn Vulnerable Node Application
  ☆20Updated 10 years ago
• silentsignal / damn-vulnerable-stateful-web-app
  Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe
  ☆14Updated 10 years ago
• integrissecurity / carbonator
  Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps a…
  ☆74Updated 7 years ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆86Updated 11 years ago
• JordanMilne / YMail-Pineapple
  Tools for MITMing Yahoo! Mail with a Wifi Pineapple Mark V and Flash
  ☆28Updated 9 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 11 years ago
• mandatoryprogrammer / xpire-crossdomain-scanner
  Scans crossdomain.xml policies for expired domain names.
  ☆26Updated 10 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆129Updated 5 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 9 years ago
• NetSPI / MoneyX
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆31Updated 9 years ago
• RUB-NDS / BurpSSOExtension
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆118Updated 4 years ago
• burp-hash / burp-hash
  ☆32Updated 10 years ago
• olliencc / appsec-vulnerability-periodic-table
  Application Security Vulnerability Periodic Table
  ☆14Updated 11 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆42Updated 8 years ago
• wireghoul / doona
  Network based protocol fuzzer
  ☆75Updated 3 years ago
• siberas / watobo
  ☆90Updated 4 months ago
• pentestgeek / scripts
  A collection of useful scripts for penetration testers
  ☆83Updated 13 years ago
• wireghoul / sploit-dev
  Exploits and research stuffs
  ☆54Updated 2 months ago
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆29Updated 8 years ago
• mubix / cfdb
  Common Findings Database
  ☆102Updated 6 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆66Updated last year
• OpenSecuritySummit / oss2018
  Open Security Summit 2018
  ☆29Updated 5 years ago