Alternatives and similar repositories for backend

Users that are interested in backend are comparing it to the libraries listed below

• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆539Updated 7 years ago
• blabla1337 / skf-flask
  Security Knowledge Framework (SKF) Python Flask / Angular project
  ☆819Updated last year
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆649Updated 2 years ago
• anshumanbh / git-all-secrets
  A tool to capture all the git secrets by leveraging multiple open source git searching tools
  ☆1,138Updated 6 years ago
• nahamsec / JSParser
  ☆823Updated last year
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆881Updated 9 months ago
• disclose / diodb
  Open-source vulnerability disclosure and bug bounty program database
  ☆1,028Updated 3 weeks ago
• OWASP / Docker-Security
  Getting a handle on container security
  ☆660Updated last year
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,536Updated 2 years ago
• jhaddix / domain
  Setup script for Regon-ng
  ☆935Updated 4 years ago
• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆742Updated last year
• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆838Updated last week
• fransr / postMessage-tracker
  A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
  ☆1,199Updated last year
• nccgroup / autochrome
  This tool downloads, installs, and configures a shiny new copy of Chromium.
  ☆463Updated last year
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆633Updated 6 years ago
• securing / DumpsterDiver
  Tool to search secrets in various filetypes.
  ☆1,021Updated 2 years ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,992Updated 3 years ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,991Updated last year
• dsopas / assessment-mindset
  Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
  ☆745Updated 3 years ago
• TheHackerDev / race-the-web
  Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.
  ☆619Updated 3 years ago
• mike-goodwin / owasp-threat-dragon-desktop
  An installable desktop variant of OWASP Threat Dragon
  ☆592Updated 3 weeks ago
• PortSwigger / param-miner
  ☆1,360Updated 4 months ago
• vysecurity / DomLink
  A tool to link a domain with registered organisation names and emails, to other domains.
  ☆845Updated last year
• Simpsonpt / AppSecEzine
  AppSec Ezine Public Repository.
  ☆1,185Updated last week
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,881Updated 2 months ago
• danielmiessler / RobotsDisallowed
  A curated list of the most common and most interesting robots.txt disallowed directories.
  ☆1,467Updated 2 years ago
• UnaPibaGeek / ctfr
  Abusing Certificate Transparency logs for getting HTTPS websites subdomains.
  ☆2,050Updated last year
• doyensec / inql
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,657Updated last week
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆656Updated 6 years ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,289Updated 6 months ago