Alternatives and similar repositories for webappsec-nutshell

Users that are interested in webappsec-nutshell are comparing it to the libraries listed below

• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• PaulSec / pepito
  Finds sensitive stuff in your git repository by specifying terms to look for
  ☆31Updated 7 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• OWASP / CodeReviewGuide
  Repository for OWASP Code Review document
  ☆16Updated 11 years ago
• OWASP / AppSecEurope2017
  ☆13Updated 8 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆37Updated 9 years ago
• anshumanbh / FASTSAM
  Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices
  ☆18Updated 8 years ago
• jgamblin / GithubDependencyCheck
  Run DependencyCheck Against Your Orgs GitHub Repos.
  ☆14Updated 7 years ago
• anilyuk / punydomaincheck
  Puny Domain Name Check
  ☆37Updated 5 years ago
• OWASP / EnDe
  Encoder, Decoder, Converter, Calculator, TU WAS DU WILLST .. for various codings used in the wild wide web
  ☆42Updated 11 months ago
• wireghoul / doona
  Network based protocol fuzzer
  ☆71Updated 3 years ago
• binarymist / HolisticInfoSec-For-WebDevelopers-Fascicle0
  Overview Tooling Process Physical People
  ☆46Updated 4 years ago
• nnewsom / webbies
  Collection of tools for web recon and enumeration.
  ☆56Updated 10 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆111Updated 7 years ago
• DinisCruz / Book_SecDevOps_Risk_Workflow
  Content for 'JIRA Risk Project' book published at LeanPub
  ☆57Updated 7 years ago
• mandatoryprogrammer / xpire-crossdomain-scanner
  Scans crossdomain.xml policies for expired domain names.
  ☆25Updated 9 years ago
• NetSPI / MoneyX
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆31Updated 9 years ago
• tacticaljmp / aws-tool-comparison
  Overview about existing tools that can be useful for AWS auditing purposes.
  ☆15Updated 7 years ago
• markclayton / bumpster
  The Unofficial Burp Extension for DNSDumpster.com
  ☆70Updated 7 years ago
• isaudits / pasv-agrsv
  Passive recon / OSINT automation script
  ☆39Updated 6 years ago
• danielmiessler / ATM
  The Adaptive Security Testing Methodology (ASTM) provides context-adjusted testing methodologies based on factors such as time available …
  ☆46Updated 3 years ago
• iriusrisk / RopeyTasks
  Deliberately vulnerable web application
  ☆22Updated 8 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated last year
• znb / Scripts
  General scripts for random stuff
  ☆38Updated 3 years ago
• skahwah / automato
  automato should help with automating some of the user-focused enumeration tasks during an internal penetration test.
  ☆72Updated 5 years ago
• flabbergastedbd / pocuito
  A tiny chrome extension to record and replay your web application proof-of-concepts.
  ☆20Updated 8 years ago
• juliocesarfort / crossdomainer
  Flash crossdomain policy security checker
  ☆26Updated 9 years ago
• OpenSecuritySummit / oss2019
  Open Security Summit 2019
  ☆26Updated 4 years ago