Alternatives and similar repositories for find-sec-bugs-demos

Users that are interested in find-sec-bugs-demos are comparing it to the libraries listed below

• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆43Updated last month
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆232Updated last year
• asmyczek / popcorn
  Popcorn - the JSON fuzzer
  ☆22Updated 11 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆148Updated 7 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆71Updated 8 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Updated 7 years ago
• anandtiwarics / python-burp-rest-api
  Python Package for burprestapi
  ☆17Updated 5 years ago
• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆34Updated 6 years ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆145Updated 8 years ago
• lpredova / Katyusha
  💣 REST and SOAP web API fuzzer
  ☆25Updated 9 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 8 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆109Updated 6 years ago
• ettic-team / EndpointFinder
  ☆53Updated last week
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆47Updated 4 years ago
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆24Updated 3 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆139Updated 5 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆15Updated 2 months ago
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 3 years ago
• secdec / pen-test-automation
  A framework for automating penetration testing using a plugin based architecture
  ☆41Updated 3 years ago
• RUB-NDS / BurpSSOExtension
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆118Updated 4 years ago
• pinnace / burp-jwt-fuzzhelper-extension
  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
  ☆100Updated 6 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 8 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆34Updated 7 years ago
• pwntester / XStreamServer
  RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler
  ☆20Updated 11 years ago
• 0xSobky / Regaxor
  A regular expression fuzzer.
  ☆45Updated 7 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆51Updated 9 years ago
• kugg / tclscan
  Scans tcl for command injection
  ☆36Updated 6 years ago
• destine21 / ZIPFileRaider
  ZIP File Raider - Burp Extension for ZIP File Payload Testing
  ☆72Updated 5 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆58Updated 5 years ago
• hacktics / vehicle
  Viewstate Hidden Control Enumerator
  ☆17Updated 12 years ago