Alternatives and similar repositories for appsec:

Users that are interested in appsec are comparing it to the libraries listed below

• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆36Updated 5 months ago
• messypoutine / gravy-overflow
  A GitHub Actions Supply Chain CTF / Goat
  ☆17Updated last month
• chryzsh / cloud-hacking-labs
  A not-curated list of cloud hacking labs
  ☆22Updated 10 months ago
• grahamhelton / grahamhelton.github.io
  ☆40Updated 6 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆47Updated last year
• silverfort-open-source / latma
  ☆79Updated last year
• sensepost / steampipe-plugin-projectdiscovery
  A steampipe plugin to query projectdiscovery.io tools.
  ☆26Updated 7 months ago
• Kloudle / attacking-and-auditing-docker-containers-and-kubernetes-clusters-training
  ☆12Updated 3 years ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆30Updated 4 months ago
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated 5 months ago
• kubenomicon / kubenomicon
  Offensive Kubernetes Threat Matrix -- kubenomicon.com
  ☆38Updated last month
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Updated last year
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated 8 months ago
• DarwinSec / DEFCON-KQL-KUNG-FU-22
  ☆18Updated 2 years ago
• cyberbuff / TheAtomicPlaybook
  The Atomic Playbook contains TTPs from the MITRE ATT&CK framework mapped to the tests in the Atomic Red Team. It serves as a single resou…
  ☆32Updated last year
• RoseSecurity / CloudPulse
  A tool to curate compelling news on cloud technologies and cybersecurity. By aggregating information from RSS feeds and Reddit, it identi…
  ☆33Updated 6 months ago
• infosecak / DVBE
  Damn Vulnerable Browser Extension (DVBE), previously named as Badly Coded Browser Extension (BCBE), is an open-source vulnerable Chrome E…
  ☆11Updated this week
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆31Updated 3 years ago
• WithSecureLabs / cloud-wiki
  A public cloud security knowledgebase - https://www.secwiki.cloud/
  ☆51Updated 3 months ago
• piercing-index / cloud-vulnerabilities
  ☆41Updated last week
• yeswehack / myopenvdp
  MyOpenVDP is a free web application to install a vulnerability disclosure policy or a vulnerability disclosure program on your assets. (V…
  ☆27Updated 7 months ago
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆19Updated 2 years ago
• proditis / bugbounty-cicd
  A set of Gitlab pipelines and Github workflows to automate and ease on BugBounty and Penetration Testing engagements
  ☆26Updated 2 years ago
• SecuraBV / brokenbydesign-azure
  A broken-by-design Azure environment to practice and train security skills in the cloud domain.
  ☆26Updated 10 months ago
• hac01 / gcp-iam-brute
  ☆42Updated 8 months ago
• OverTheNet / CODE_OF_MALWARE_I
  Contains Actual Events and Codes of Threat Groups, APTs, Research Groups
  ☆19Updated 2 years ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆66Updated 6 months ago
• freqyXin / Offensive-Wireless-Security
  Slide deck for DEF CON 30 - Read Team Village - Offensive Wireless Security presentation
  ☆13Updated 2 years ago
• hakluke / hakrevshell
  ☆37Updated 3 years ago
• alt3kx / wafparan01d3
  Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
  ☆25Updated 3 years ago