Alternatives and similar repositories for security-testbeds

Users that are interested in security-testbeds are comparing it to the libraries listed below

• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆49Updated 2 years ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆72Updated 3 years ago
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆18Updated 4 years ago
• doyensec / Unsafe-Unpacking
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆41Updated 8 months ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 3 months ago
• nccgroup / HTTPSignatures
  A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.
  ☆41Updated 3 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 7 months ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 4 years ago
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆32Updated 7 years ago
• o-o-overflow / dc2020q-uploooadit
  HTTP Desync Attack
  ☆28Updated 5 years ago
• assetnote / kitebuilder
  ☆24Updated last year
• elttam / rsu-cracker
  ☆33Updated 2 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆89Updated 7 months ago
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated 2 years ago
• wdahlenburg / CVESearch
  Query various sources for CVE proof-of-concepts
  ☆51Updated 2 years ago
• nccgroup / cq
  ☆116Updated 2 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆14Updated 2 years ago
• artsploit / rogue-jndi
  A malicious LDAP server for JNDI injection attacks
  ☆75Updated 9 months ago
• silentsignal / burp-uuid
  UUID issues for Burp Suite
  ☆52Updated 3 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• morganc3 / KOAuth
  OAuth 2.0 Dynamic Security Scanner
  ☆33Updated 4 years ago
• jackj07 / Response-Pattern-Matcher
  Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…
  ☆15Updated 2 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆42Updated this week
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆33Updated 6 months ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆33Updated 2 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆49Updated 3 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 5 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 4 years ago