Alternatives and similar repositories for awesome-product-security

Users that are interested in awesome-product-security are comparing it to the libraries listed below

• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated 2 months ago
• OWASP / wrongsecrets-ctf-party
  Run Capture the Flags and Security Trainings with OWASP WrongSecrets
  ☆50Updated this week
• GangGreenTemperTatum / DOMspy
  A web security research tool for DOM testing
  ☆21Updated this week
• pageinsec / portswigger_academy
  Scripts and misc. stuff related to the PortSwigger Web Academy
  ☆17Updated 3 years ago
• goyalvartul / Cloud-Security-Encyclopedia
  ☆11Updated 2 years ago
• ayushpriya10 / IMDShift
  ☆57Updated 2 years ago
• yousseflahouifi / moniorg
  moniorg is a tool that leverages crt.sh website to monitor domains of a target
  ☆47Updated 2 years ago
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆22Updated last year
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated 2 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆32Updated 3 years ago
• DhiyaneshGeek / CRTP-Study-Material
  Tools and Scripts used in CRTP
  ☆12Updated 5 years ago
• chryzsh / cloud-hacking-labs
  A not-curated list of cloud hacking labs
  ☆25Updated last year
• corneacristian / Do-It-Yourself-Web-Penetration-Testing
  Do It Yourself! (DIY) Web Penetration Testing is a guideline in performing security test cases against web applications
  ☆39Updated 2 years ago
• Th3l0newolf / Desktop-WorkStation-Endpoint-Security-CheckList
  ☆13Updated 3 years ago
• hac01 / gcp-iam-brute
  ☆50Updated last year
• intrudir / burpcollaborator-docker
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆30Updated 6 months ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Updated last year
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• nccgroup / cowcloud
  ☆58Updated 2 years ago
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆44Updated 2 years ago
• PanosoikoGr / CloudTap
  Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…
  ☆42Updated last month
• jjogal / shodan-dorks
  ☆22Updated last month
• trickest / scripts
  Handy scripts and one-liners to make life easier
  ☆37Updated 2 years ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆70Updated 3 years ago
• securelayer7 / not-a-vuln-list
  Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report
  ☆13Updated 6 months ago
• rndinfosecguy / OSWA-Experience-And-Exam-Preparation
  My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam
  ☆39Updated 2 years ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆27Updated 4 months ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago