Alternatives and similar repositories for security-crawl-maze

Users that are interested in security-crawl-maze are comparing it to the libraries listed below

• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆227Updated last year
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆418Updated 2 years ago
• zaproxy / zest
  ☆107Updated last month
• google / csp-evaluator
  ☆374Updated 9 months ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆169Updated 6 months ago
• intrigueio / intrigue-ident
  Application and Service Fingerprinting
  ☆133Updated 2 years ago
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆155Updated last year
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated 5 months ago
• mandatoryprogrammer / tarnish
  A Chrome extension static analysis tool to help aide in security reviews.
  ☆159Updated 2 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 8 years ago
• nccgroup / glasgo
  Go static analysis tool that checks for security issues using an AST.
  ☆29Updated 7 years ago
• google / gke-auditor
  ☆74Updated 5 years ago
• securitum / research
  research
  ☆151Updated last year
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆241Updated last year
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆403Updated 8 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 3 months ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆327Updated 3 years ago
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆300Updated 8 years ago
• PortSwigger / distribute-damage
  Evenly distributes scanner load across targets
  ☆93Updated 7 months ago
• facebookincubator / nvdtools
  A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)
  ☆467Updated last year
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆238Updated 7 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆141Updated last year
• 0c34 / govwa
  ☆182Updated 9 months ago
• google / path-auditor
  ☆252Updated 4 years ago
• google / safe-html-types
  Security contract types
  ☆60Updated 3 years ago
• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆77Updated 5 years ago
• google / vulncode-db
  Vulncode-DB project
  ☆577Updated 3 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆151Updated 2 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆43Updated last month