Alternatives and similar repositories for webappsec-nutshell

Users that are interested in webappsec-nutshell are comparing it to the libraries listed below

• binarymist / HolisticInfoSec-For-WebDevelopers-Fascicle0
  Overview Tooling Process Physical People
  ☆48Updated last month
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆111Updated 8 years ago
• iSECPartners / LibTech-Auditing-Cheatsheet
  ☆198Updated 9 years ago
• anilyuk / punydomaincheck
  Puny Domain Name Check
  ☆37Updated 6 years ago
• nowsecure / mobile-incident-response
  Mobile Incident Response Book
  ☆61Updated 9 years ago
• pentestgeek / scripts
  A collection of useful scripts for penetration testers
  ☆83Updated 13 years ago
• jgamblin / GithubDependencyCheck
  Run DependencyCheck Against Your Orgs GitHub Repos.
  ☆14Updated 7 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• PaulSec / pepito
  Finds sensitive stuff in your git repository by specifying terms to look for
  ☆31Updated 7 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 8 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• OWASP / EnDe
  Encoder, Decoder, Converter, Calculator, TU WAS DU WILLST .. for various codings used in the wild wide web
  ☆42Updated last year
• NetSPI / MoneyX
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆31Updated 9 years ago
• CIRCL / compliance
  Legal, procedural and policies document templates for operating an IRT
  ☆65Updated last year
• wireghoul / sploit-dev
  Exploits and research stuffs
  ☆54Updated 2 months ago
• appsecco / osint-viz-platform-reconvillage
  The repository for Building visualisation platforms for OSINT data using open source solutions
  ☆30Updated 7 years ago
• tacticaljmp / aws-tool-comparison
  Overview about existing tools that can be useful for AWS auditing purposes.
  ☆15Updated 8 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 9 years ago
• markclayton / bumpster
  The Unofficial Burp Extension for DNSDumpster.com
  ☆70Updated 7 years ago
• wireghoul / doona
  Network based protocol fuzzer
  ☆75Updated 3 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• olliencc / appsec-vulnerability-periodic-table
  Application Security Vulnerability Periodic Table
  ☆14Updated 11 years ago
• NetSPI / httpillage
  ☆26Updated 8 years ago
• anandtiwarics / datasploit
  A tool to perform various OSINT techniques, aggregate all the raw data, visualise it on a dashboard, and facilitate alerting and monitori…
  ☆31Updated 7 years ago
• SpiderLabs / batchyDNS
  A reconnaissance tool that can quickly discover hostnames from a list of IP addresses.
  ☆38Updated 15 years ago
• JordanMilne / YMail-Pineapple
  Tools for MITMing Yahoo! Mail with a Wifi Pineapple Mark V and Flash
  ☆28Updated 9 years ago
• silentsignal / damn-vulnerable-stateful-web-app
  Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe
  ☆14Updated 10 years ago
• praetorian-inc / hashcatJS
  An implementation of the hashcat rules engine in javascript
  ☆49Updated 7 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 11 years ago