Alternatives and similar repositories for threadfix

Users that are interested in threadfix are comparing it to the libraries listed below

• jtmelton / appsensor
  A toolkit for building self-defending applications through real-time event detection and response
  ☆282Updated 2 years ago
• mozilla / seasponge
  SeaSponge is an accessible threat modelling tool from Mozilla
  ☆279Updated 7 years ago
• fastly / ftw
  Framework for Testing WAFs (FTW!)
  ☆266Updated 2 years ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆144Updated 8 years ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆484Updated last year
• vulndb / data
  User, contributor and developer friendly vulnerability database
  ☆128Updated 6 years ago
• WithSecureOpenSource / mittn
  Mittn: Security test tool runner for test automation in CI
  ☆195Updated last year
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆195Updated 6 years ago
• aparsons / bag-of-holding
  An application to assist in the organization and prioritization of software security activities.
  ☆139Updated 4 years ago
• johndekroon / serializekiller
  Mass scanner for the Java serialize bug
  ☆151Updated last month
• openstack-archive / syntribos
  Python API security testing tool from OpenStack Security Group
  ☆276Updated 5 years ago
• mozilla / Garmr
  INACTIVE - Security Testing Tool
  ☆107Updated 9 years ago
• salesforce / vulnreport
  Open-source pentesting management and automation platform by Salesforce Product Security
  ☆597Updated 3 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆128Updated 4 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆78Updated 2 years ago
• KvasirSecurity / Kvasir
  Kvasir: Penetration Test Data Management
  ☆430Updated 6 years ago
• olacabs / jackhammer
  Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
  ☆736Updated last year
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• seccubus / seccubus
  Easy automated vulnerability scanning, reporting and analysis
  ☆701Updated 5 years ago
• victims / victims-cve-db
  CVE database store
  ☆132Updated 4 years ago
• redteamsecurity / AutoNessus
  This script communicates with the Nessus API in an attempt to help with automating scans. Depending on the flag issued with the script, y…
  ☆214Updated 5 years ago
• OWASP / O-Saft
  O-Saft - OWASP SSL advanced forensic tool
  ☆378Updated last week
• lightbulb-framework / lightbulb-framework
  Tools for auditing WAFS
  ☆461Updated 4 years ago
• OWASP / glue
  Application Security Automation
  ☆527Updated last year
• mozilla / minion
  Minion
  ☆354Updated 6 years ago
• spoofzu / DeepViolet
  Tool for introspection of SSL\TLS sessions
  ☆140Updated last month
• scovetta / yasca
  Yet Another Source Code Analyzer
  ☆184Updated 3 years ago
• toolswatch / vFeed
  The Correlated CVE Vulnerability And Threat Intelligence Database API
  ☆946Updated 4 years ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆129Updated 8 years ago