Alternatives and similar repositories for webappsec-nutshell:

Users that are interested in webappsec-nutshell are comparing it to the libraries listed below

• nnewsom / webbies
  Collection of tools for web recon and enumeration.
  ☆56Updated 9 years ago
• anilyuk / punydomaincheck
  Puny Domain Name Check
  ☆36Updated 5 years ago
• PaulSec / pepito
  Finds sensitive stuff in your git repository by specifying terms to look for
  ☆31Updated 7 years ago
• skahwah / automato
  automato should help with automating some of the user-focused enumeration tasks during an internal penetration test.
  ☆72Updated 5 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated 9 months ago
• AonCyberLabs / MAM-Security-Checklist
  Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution
  ☆19Updated 9 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• jaredhaight / scripts
  A collection of scripts that I've written while pentesting.
  ☆31Updated 6 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 7 years ago
• jgamblin / GithubDependencyCheck
  Run DependencyCheck Against Your Orgs GitHub Repos.
  ☆14Updated 7 years ago
• OWASP / OWASPBugBounty
  This is a container of web applications that work with OWASP Bug Bounty for Projects
  ☆32Updated 2 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• mubix / sectaskbars
  Security Product Taskbar Icons (to identify from screenshots)
  ☆57Updated 4 years ago
• nowsecure / mobile-incident-response
  Mobile Incident Response Book
  ☆61Updated 8 years ago
• OWASP / AppSecEurope2017
  ☆13Updated 7 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆112Updated 7 years ago
• NetSPI / MoneyX
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆31Updated 8 years ago
• threatexpress / portplow
  PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…
  ☆53Updated 3 months ago
• cliffe / flawed_fortress-secgen_ctf_frontend
  CTF website frontend for SecGen
  ☆21Updated 7 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆37Updated 9 years ago
• wireghoul / sploit-dev
  Exploits and research stuffs
  ☆54Updated last year
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 8 years ago
• porterhau5 / BloodHound
  Six Degrees of Domain Admin
  ☆15Updated 7 years ago
• isp1r0 / DVNA
  Damn Vulnerable Node Application
  ☆19Updated 9 years ago
• sUbc0ol / Apache-Struts2-RCE-Exploit-v2-CVE-2017-5638
  ☆13Updated 7 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆38Updated 7 years ago
• markclayton / bumpster
  The Unofficial Burp Extension for DNSDumpster.com
  ☆70Updated 7 years ago
• subinacls / Filibuster
  ☆27Updated 7 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆51Updated 4 years ago