Alternatives and similar repositories for security-crawl-maze

Users that are interested in security-crawl-maze are comparing it to the libraries listed below

• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆226Updated last year
• ajinabraham / libsast
  Generic SAST Library
  ☆135Updated 7 months ago
• zaproxy / zest
  ☆113Updated 3 weeks ago
• intrigueio / intrigue-ident
  Application and Service Fingerprinting
  ☆132Updated 3 years ago
• google / csp-evaluator
  ☆379Updated 11 months ago
• mandatoryprogrammer / tarnish
  A Chrome extension static analysis tool to help aide in security reviews.
  ☆162Updated 2 years ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆406Updated 8 years ago
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 3 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆160Updated last year
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 3 years ago
• nccgroup / glasgo
  Go static analysis tool that checks for security issues using an AST.
  ☆29Updated 7 years ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆419Updated 2 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆175Updated 8 months ago
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆23Updated 5 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆242Updated last year
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• 0c34 / govwa
  ☆185Updated 11 months ago
• PortSwigger / distribute-damage
  Evenly distributes scanner load across targets
  ☆92Updated 9 months ago
• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆78Updated 5 years ago
• CompassSecurity / SAMLRaider
  SAML2 Burp Extension
  ☆438Updated 2 weeks ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 8 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 5 months ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆240Updated 7 years ago
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆300Updated 8 years ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…
  ☆135Updated last week
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 4 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆142Updated last year
• google / security-testbeds
  ☆57Updated 2 weeks ago
• cweb / unicode-security-guide
  Unicode Security Guide
  ☆120Updated 8 years ago
• google / safe-html-types
  Security contract types
  ☆60Updated 3 years ago