Alternatives and similar repositories for security-testbeds:

Users that are interested in security-testbeds are comparing it to the libraries listed below

• google / plusfish
  Plusfish is a classic web application vulnerability scanner/fuzzer and aimed at security professionals
  ☆28Updated 2 years ago
• google / acjs
  ☆10Updated 2 months ago
• GitHubSecurityLab / ruby-unsafe-deserialization
  Proof of Concepts for unsafe deserialization in Ruby
  ☆17Updated 4 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆78Updated 7 months ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆48Updated last year
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆23Updated 7 months ago
• google / bughunters
  ☆36Updated this week
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆42Updated last year
• elttam / rsu-cracker
  ☆32Updated 2 years ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆70Updated 3 years ago
• PortSwigger / request-minimizer
  ☆19Updated 2 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆12Updated last year
• doyensec / Unsafe-Unpacking
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆37Updated 2 months ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 5 months ago
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆18Updated 4 years ago
• intruder-io / param-miner
  Fork of https://github.com/PortSwigger/param-miner for header smuggling research
  ☆12Updated 3 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆39Updated this week
• vin01 / poc-cve-2024-38396
  PoC for iTerm2 CVEs CVE-2024-38396 and CVE-2024-38395 which allow code execution
  ☆19Updated 8 months ago
• binareio / FastCVE
  FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)
  ☆46Updated last month
• synacktiv / DepFuzzer
  ☆55Updated 2 months ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆32Updated 2 years ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆38Updated 2 months ago
• TheGrandPew / Sanity
  ☆15Updated 3 years ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆26Updated 4 months ago
• PortSwigger / web-cache-deception-scanner
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆15Updated 7 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆36Updated 7 years ago
• jackj07 / Response-Pattern-Matcher
  Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…
  ☆15Updated last year
• google / protobuf-extensibility-for-burp
  ☆83Updated 8 months ago
• intrudir / burpcollaborator-docker
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆28Updated last month
• silentsignal / burp-pdml
  PDML importer for Burp Suite
  ☆28Updated 4 years ago