Alternatives and similar repositories for security-crawl-maze

Users that are interested in security-crawl-maze are comparing it to the libraries listed below

• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆225Updated last year
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated 2 months ago
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• intrigueio / intrigue-ident
  Application and Service Fingerprinting
  ☆133Updated 2 years ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆416Updated last year
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆151Updated last year
• zaproxy / zest
  ☆107Updated last week
• google / gke-auditor
  ☆74Updated 4 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆169Updated 3 months ago
• google / csp-evaluator
  ☆367Updated 6 months ago
• 0c34 / govwa
  ☆182Updated 6 months ago
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• mandatoryprogrammer / tarnish
  A Chrome extension static analysis tool to help aide in security reviews.
  ☆156Updated 2 years ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆235Updated 7 years ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆400Updated 8 years ago
• nccgroup / glasgo
  Go static analysis tool that checks for security issues using an AST.
  ☆29Updated 6 years ago
• facebookincubator / nvdtools
  A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)
  ☆468Updated last year
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆298Updated 7 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 7 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆237Updated last year
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆22Updated 5 years ago
• google / path-auditor
  ☆252Updated 4 years ago
• vmware / burp-rest-api
  REST/JSON API to the Burp Suite security tool.
  ☆562Updated last month
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆328Updated 3 years ago
• PortSwigger / distribute-damage
  Evenly distributes scanner load across targets
  ☆92Updated 5 months ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆209Updated 2 years ago
• google / safe-html-types
  Security contract types
  ☆60Updated 2 years ago
• google / vulncode-db
  Vulncode-DB project
  ☆581Updated 3 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated last month
• lanrat / certgraph
  An open source intelligence tool to crawl the graph of certificate Alternate Names
  ☆357Updated 2 weeks ago