Alternatives and similar repositories for appsec-resources:

Users that are interested in appsec-resources are comparing it to the libraries listed below

• chihebchebbi / Internet-Of-Things-Pentesting-Framework
  ☆92Updated 6 years ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆129Updated 7 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• moloch-- / CSP-Bypass
  A Burp Plugin for Detecting Weaknesses in Content Security Policies
  ☆164Updated last year
• HanseSecure / ExploitDev
  ☆122Updated 6 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 8 years ago
• nccgroup / Hodor
  Hodor! Fuzzer..
  ☆128Updated 8 years ago
• IOActive / RepoSsessed
  A project designed to parse public source code repositories and find various types of vulnerabilities.
  ☆191Updated 7 years ago
• Rossmairm / PenTools
  This is a bundle of python and bash penetration testing tools for recon and information gathering.
  ☆80Updated 9 years ago
• bsidesnyc / BSidesNYC2016
  ☆45Updated 7 years ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆87Updated 10 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆125Updated 8 months ago
• markclayton / bumpster
  The Unofficial Burp Extension for DNSDumpster.com
  ☆70Updated 6 years ago
• mschwager / gitem
  A Github organization reconnaissance tool.
  ☆216Updated last year
• srcclr / bughunt
  A weekly challenge where we share some code and you find a bug in it.
  ☆70Updated 9 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 4 years ago
• infosec-au / websec-weekly
  The databases, API's and managers behind https://websecweekly.org
  ☆50Updated 9 years ago
• SecarmaLabs / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆44Updated 7 years ago
• ZephrFish / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆25Updated 7 years ago
• AndreiAvadanei / Exploits
  Public exploits (re)writed while learning.
  ☆59Updated 11 years ago
• avicoder / Hackerone
  Hackerone disclosed report URL Aggregator
  ☆29Updated 6 years ago
• SecarmaLabs / psychoPATH
  psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
  ☆141Updated 7 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 8 years ago
• gavia / subsearch
  A tool for discovering subdomains via third party services and wordlists.
  ☆75Updated 8 years ago
• jfoote / burp-git-bridge
  Store Burp data and collaborate via git
  ☆53Updated 5 years ago
• internetwache / Internetwache-CTF-2016
  The Internetwache CTF 2016 repository
  ☆73Updated 3 years ago
• mubix / cfdb
  Common Findings Database
  ☆100Updated 5 years ago
• SafeBreach-Labs / mkmalwarefrom
  Proof-of-concept two-stage dropper generator that uses bits from external sources
  ☆98Updated 7 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 7 years ago