Alternatives and similar repositories for webappsec-nutshell

Users that are interested in webappsec-nutshell are comparing it to the libraries listed below

• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆111Updated 8 years ago
• iSECPartners / LibTech-Auditing-Cheatsheet
  ☆198Updated 9 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 9 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆129Updated 5 years ago
• isp1r0 / DVNA
  Damn Vulnerable Node Application
  ☆20Updated 9 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• silentsignal / damn-vulnerable-stateful-web-app
  Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe
  ☆14Updated 9 years ago
• mandatoryprogrammer / PERS
  A passive scanning tool for finding expired domain vulnerabilities while you browse.
  ☆41Updated 6 years ago
• binarymist / HolisticInfoSec-For-WebDevelopers-Fascicle0
  Overview Tooling Process Physical People
  ☆47Updated 2 weeks ago
• wireghoul / doona
  Network based protocol fuzzer
  ☆75Updated 3 years ago
• wpscanteam / VulnerableWordpress
  ☆41Updated 8 years ago
• OWASP / EnDe
  Encoder, Decoder, Converter, Calculator, TU WAS DU WILLST .. for various codings used in the wild wide web
  ☆42Updated last year
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• siberas / watobo
  ☆90Updated 2 months ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• NetSPI / MoneyX
  MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
  ☆31Updated 9 years ago
• PaulSec / pepito
  Finds sensitive stuff in your git repository by specifying terms to look for
  ☆31Updated 7 years ago
• strozfriedberg / MAM-Security-Checklist
  Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution
  ☆20Updated 10 years ago
• pentestgeek / scripts
  A collection of useful scripts for penetration testers
  ☆83Updated 13 years ago
• anilyuk / punydomaincheck
  Puny Domain Name Check
  ☆37Updated 6 years ago
• SpiderLabs / batchyDNS
  A reconnaissance tool that can quickly discover hostnames from a list of IP addresses.
  ☆38Updated 14 years ago
• indeedops / ShadowBuster
  ☆78Updated 10 years ago
• brianwarehime / gavel
  Maltego Transforms to Query Traffic Records
  ☆34Updated 10 years ago
• BBVA / patton-cli
  The knife of the Admin & Security auditor
  ☆42Updated 5 years ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆88Updated 11 years ago
• dobin / SentinelTestbed
  Vulnerable web site. Used to test sentinel features.
  ☆11Updated 9 years ago
• iriusrisk / RopeyTasks
  Deliberately vulnerable web application
  ☆22Updated 8 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆52Updated 4 years ago