Alternatives and similar repositories for find-sec-bugs-demos

Users that are interested in find-sec-bugs-demos are comparing it to the libraries listed below

• MozillaSecurity / bugmon

  View on GitHub
  Automatic analysis of SpiderMonkey and Firefox bugs on Bugzilla
  ☆11Feb 5, 2026Updated last week
• GoSecure / 44con-code-review-workshop

  View on GitHub
  References, tools and sample payloads
  ☆11Sep 16, 2016Updated 9 years ago
• pluohust / ConFuzz

  View on GitHub
  ☆12May 31, 2018Updated 7 years ago
• mxmssh / tvc

  View on GitHub
  The tool for bugs detection in the process of tainted data processing (based on DBI Intel PIN).
  ☆12Jul 23, 2015Updated 10 years ago
• RUB-SysSec / PrimGen

  View on GitHub
  ACSAC 2018 paper: Towards Automated Generation of Exploitation Primitives for Web Browsers
  ☆15Nov 28, 2018Updated 7 years ago
• h3xstream / burp-image-metadata

  View on GitHub
  Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).
  ☆15Apr 15, 2023Updated 2 years ago
• collins-research / FuzzM

  View on GitHub
  ☆16Apr 15, 2019Updated 6 years ago
• skepticfx / damnvulnerable.me

  View on GitHub
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35May 19, 2019Updated 6 years ago
• secure-software-engineering / sootdiff

  View on GitHub
  SootDiff - Bytecode Comparison Across Different Java Compilers
  ☆18May 24, 2024Updated last year
• tetrane / tetrane-oss

  View on GitHub
  Open Source Software modified or written by Tetrane https://www.tetrane.com for the REVEN product.
  ☆21Feb 9, 2023Updated 3 years ago
• secure-software-engineering / secucheck

  View on GitHub
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆18Jan 30, 2025Updated last year
• dotnet-security-guard / fxcop-security-guard

  View on GitHub
  FxCop rules that aim to help security audit on .NET applications.
  ☆14Nov 10, 2017Updated 8 years ago
• qingkaishi / context-sensitive-reachability

  View on GitHub
  Indexing reachability for context-sensitive data flow analysis.
  ☆12Jul 10, 2022Updated 3 years ago
• lcatro / cve_diff_checker

  View on GitHub
  快速对自己项目中引入的第三方开源库进行1day patch检索,patch数据每天晚上11点更新
  ☆21Jan 27, 2022Updated 4 years ago
• praseodym / learning-fuzzing

  View on GitHub
  Code from MSc thesis on combining learning and fuzzing
  ☆19Jul 30, 2018Updated 7 years ago
• PaulSec / VNWA

  View on GitHub
  Vulnerable Node.js Web Application to pratice with your pentesting skills
  ☆21Apr 29, 2017Updated 8 years ago
• OWASP / Application-Security-Curriculum

  View on GitHub
  ☆29Aug 15, 2021Updated 4 years ago
• laconicwolf / random-python

  View on GitHub
  Various Python scripts that have come in handy but aren't important enough to get their own repository
  ☆22Feb 18, 2021Updated 4 years ago
• avatartwo / avatar2-examples

  View on GitHub
  Examples demonstrating the usage of avatar²
  ☆28Dec 9, 2023Updated 2 years ago
• GoSecure / security-cheat-sheet

  View on GitHub
  Minimalist cheat sheet for developpers to write secure code
  ☆54Jul 17, 2020Updated 5 years ago
• georlav / objectmap

  View on GitHub
  A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.
  ☆24Jul 10, 2019Updated 6 years ago
• enferas / TestabilityTarpits

  View on GitHub
  Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)
  ☆26Feb 14, 2024Updated 2 years ago
• quarkslab / aosp_dataset

  View on GitHub
  Large Commit Precise Vulnerability Dataset based on AOSP CVE
  ☆65May 12, 2023Updated 2 years ago
• find-sec-bugs / juliet-test-suite

  View on GitHub
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆62May 17, 2021Updated 4 years ago
• wcventure / Static-Analysis-Rules

  View on GitHub
  Summary of static analysis in Java and C/C++
  ☆18Aug 11, 2022Updated 3 years ago
• DanMcInerney / shellshock-hunter-google

  View on GitHub
  Search google for shellshock vulnerable sites
  ☆27Oct 10, 2014Updated 11 years ago
• TheTwitchy / vulnd_xxe

  View on GitHub
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆26Mar 29, 2018Updated 7 years ago
• find-sec-bugs / find-sec-bugs

  View on GitHub
  The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…
  ☆2,411Jun 17, 2025Updated 7 months ago
• cdaller / security_taint_propagation

  View on GitHub
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆28Oct 11, 2018Updated 7 years ago
• Klerith / clima-app-node

  View on GitHub
  Una aplicación del clima del curso de Node
  ☆11Mar 6, 2019Updated 6 years ago
• tdimino / bg3se-macos

  View on GitHub
  A replication of the Baldur's Gate 3 Script Extender for MacOS
  ☆22Feb 8, 2026Updated last week
• CSPF-Founder / JavaVulnerableLab

  View on GitHub
  Vulnerable Java based Web Application
  ☆270Jun 20, 2024Updated last year
• DonggeLiu / Legion

  View on GitHub
  A coverage-based software testing tool
  ☆34Dec 11, 2020Updated 5 years ago
• gryan11 / PGA

  View on GitHub
  Proximal Gradient Analysis open source release based on our USENIX Security 2021 paper: "Fine Grained Dataflow Analysis with Proximal Gra…
  ☆32Apr 29, 2021Updated 4 years ago
• iiiusky / javaweb-codereview

  View on GitHub
  javaweb-codereview
  ☆30Jan 22, 2019Updated 7 years ago
• RUB-SysSec / cupid

  View on GitHub
  Cupid: Automatic Fuzzer Selection for Collaborative Fuzzing
  ☆33Mar 25, 2021Updated 4 years ago
• IntelLabs / kafl.targets

  View on GitHub
  Target components for kAFL/Nyx Fuzzer
  ☆34Jul 21, 2025Updated 6 months ago
• csaf-tools / CVRF-CSAF-Converter

  View on GitHub
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Jun 4, 2025Updated 8 months ago
• CircleCI-Archived / server-static-install

  View on GitHub
  Installation tools for CircleCI Server - Static
  ☆10Jan 14, 2023Updated 3 years ago