Alternatives and similar repositories for appsec-resources

Users that are interested in appsec-resources are comparing it to the libraries listed below

• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• moloch-- / CSP-Bypass
  A Burp Plugin for Detecting Weaknesses in Content Security Policies
  ☆168Updated 2 years ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆129Updated 8 years ago
• IOActive / RepoSsessed
  A project designed to parse public source code repositories and find various types of vulnerabilities.
  ☆192Updated 7 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 8 years ago
• chihebchebbi / Internet-Of-Things-Pentesting-Framework
  ☆92Updated 6 years ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆87Updated 11 years ago
• vulndb / data
  User, contributor and developer friendly vulnerability database
  ☆128Updated 6 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆127Updated last year
• integrissecurity / carbonator
  Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps a…
  ☆74Updated 7 years ago
• SafeBreach-Labs / pyekaboo
  Proof-of-concept program that is able to to hijack/hook/proxy Python module(s) thanks to $PYTHONPATH variable
  ☆152Updated 8 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆111Updated 7 years ago
• Rossmairm / PenTools
  This is a bundle of python and bash penetration testing tools for recon and information gathering.
  ☆80Updated 9 years ago
• HanseSecure / ExploitDev
  ☆122Updated 7 years ago
• arvinddoraiswamy / mywebappscripts
  A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
  ☆168Updated 9 years ago
• SecarmaLabs / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆44Updated 7 years ago
• ZephrFish / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆25Updated 8 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 7 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆139Updated 11 months ago
• sbehrens / sleepy-puppy
  Deprecated please use https://github.com/Netflix/sleepy-puppy
  ☆95Updated 6 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• srcclr / bughunt
  A weekly challenge where we share some code and you find a bug in it.
  ☆71Updated 9 years ago
• netbiosX / Pentest-Bookmarks
  Database of websites for penetration testing
  ☆176Updated 5 years ago
• burp-hash / burp-hash
  ☆32Updated 9 years ago
• siberas / watobo
  ☆90Updated 5 months ago
• andresriancho / django-moth
  A Django vulnerable Web application for testing the w3af framework
  ☆32Updated 2 years ago
• salesforce / AutoTriageBot
  AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.
  ☆56Updated 3 years ago
• bsidesnyc / BSidesNYC2016
  ☆44Updated 7 years ago
• 0xcite / fingerping
  A security tool to fingerprint PNG libraries used by web applications
  ☆81Updated 6 years ago