Alternatives and similar repositories for find-sec-bugs-demos

Users that are interested in find-sec-bugs-demos are comparing it to the libraries listed below

• asmyczek / popcorn
  Popcorn - the JSON fuzzer
  ☆22Updated 11 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆71Updated 8 years ago
• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆34Updated 6 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Updated 7 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 8 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆43Updated 3 weeks ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆51Updated 9 years ago
• destine21 / ZIPFileRaider
  ZIP File Raider - Burp Extension for ZIP File Payload Testing
  ☆72Updated 5 years ago
• o2platform / DefCon_RESTing
  Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro
  ☆53Updated 12 years ago
• RUB-NDS / JOSEPH
  ☆33Updated 4 years ago
• ecbftw / poc
  A collection of published exploits and proof-of-concept code.
  ☆21Updated 7 years ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆146Updated 8 years ago
• anandtiwarics / python-burp-rest-api
  Python Package for burprestapi
  ☆16Updated 5 years ago
• RUB-NDS / BurpSSOExtension
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆118Updated 4 years ago
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆47Updated 4 years ago
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆32Updated last year
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 7 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆148Updated 7 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 8 years ago
• 0xSobky / Regaxor
  A regular expression fuzzer.
  ☆45Updated 7 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆55Updated 6 years ago
• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆46Updated 7 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 3 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆15Updated last month
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆89Updated 10 months ago
• georlav / objectmap
  A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.
  ☆24Updated 6 years ago
• fbogner / race2rce
  A PoC that shows that Web Vulnerabilities can indeed be interesting
  ☆20Updated 7 years ago
• pinnace / burp-jwt-fuzzhelper-extension
  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
  ☆100Updated 6 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 6 years ago
• topolik / ois-dos
  Java Deserialization
  ☆27Updated 9 years ago