Alternatives and similar repositories for devsecops

Users that are interested in devsecops are comparing it to the libraries listed below

• optiv / rest-api-goat
  ☆84Updated 2 years ago
• d3lb3 / security-code-review
  My personal collection of resources (mostly tools and training materials) for source code security audits.
  ☆104Updated last year
• apisec-university / free-API-security-test-action
  APIsec|SCAN - Free API security testing using Github actions
  ☆103Updated last year
• certmichelin / PTART
  ☆40Updated last week
• PatrikFehrenbach / practical-bug-bounty
  A Django web application for curating Bug Bounty educational Videos
  ☆99Updated 2 years ago
• h4md153v63n / eLearnSecurity-Web-Application-Penetration-Tester-eXtreme-eWPTXv2
  eLearnSecurity Web application Penetration Tester eXtreme (eWPTXv2)
  ☆28Updated 2 years ago
• mihir-shah99 / vxdf
  ☆61Updated 8 months ago
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆41Updated this week
• Tib3rius / Turbo-Intruder-Scripts
  A collection of Turbo Intruder scripts.
  ☆68Updated last year
• jhaddix / CSPReconGO
  ☆107Updated last year
• nirajkharel / NotJustAChecklist
  ☆42Updated 7 months ago
• ethanolivertroy / hackspacecon-2023
  Workshop & Talk Slide Decks from HackSpaceCon
  ☆25Updated last month
• Commando-X / vuln-bank-mobile
  A deliberately vulnerable mobile banking application designed for practicing mobile security testing. Features common vulnerabilities fou…
  ☆76Updated 2 months ago
• jthack / cewlai
  ai-based domain name generation
  ☆101Updated last year
• Alevsk / rmm
  Recon MindMap (RMM)
  ☆177Updated last year
• Hackmanit / template-injection-playground
  The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…
  ☆58Updated last month
• Hipapheralkus / AIAIAI
  An Incredibly Annoying, Insufferable Authentication Implementation
  ☆31Updated last year
• yacwagh / FAAST
  Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
  ☆67Updated 9 months ago
• corneacristian / Do-It-Yourself-Web-Penetration-Testing
  Do It Yourself! (DIY) Web Penetration Testing is a guideline in performing security test cases against web applications
  ☆39Updated 2 years ago
• R-s0n / OSWE-Methodology
  Blank methodology sheet for the OSWE exam
  ☆12Updated 4 years ago
• layro01 / node-api-goat
  A simple Node.js Express REST app with some OWASP vulnerabilities.
  ☆22Updated last year
• dwisiswant0 / leakz-passive-workflow
  Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.
  ☆21Updated last year
• 0xSojalSec / Mobile-Application-Security
  Resources for Mobile Application Testing 📓
  ☆74Updated last year
• DanaEpp / APIDiscovery
  An extension for Burp's Web Vulnerability Scanner that can detect API discovery metadata and extract data useful during recon.
  ☆18Updated 4 months ago
• xssdoctor / graphqlMaker
  Finds graphql queries in javascript files
  ☆68Updated last year
• Anon-Artist / 100-days-of-OffSec
  Hi everyone,
  ☆61Updated 2 years ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆151Updated 10 months ago
• OWASP / www-project-devsecops-verification-standard
  OWASP Foundation Web Respository
  ☆45Updated last month
• payatu / DVAPI
  Damn Vulnerable API
  ☆86Updated 4 months ago
• righettod / toolbox-pentest-web
  Docker toolbox for pentest of web based application.
  ☆174Updated this week