Alternatives and similar repositories for security-testbeds

Users that are interested in security-testbeds are comparing it to the libraries listed below

• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆51Updated 2 years ago
• doyensec / Unsafe-Unpacking
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆42Updated last year
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆72Updated 4 years ago
• elttam / rsu-cracker
  ☆34Updated 2 years ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 4 years ago
• hakivvi / ObjectPwnStream
  a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.
  ☆16Updated 3 years ago
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆16Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 8 months ago
• o-o-overflow / dc2020q-uploooadit
  HTTP Desync Attack
  ☆28Updated 5 years ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆23Updated 4 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated last year
• neex / ghostinthepdf
  ☆170Updated 4 years ago
• artsploit / rogue-jndi
  A malicious LDAP server for JNDI injection attacks
  ☆76Updated last year
• ajxchapman / ReServ
  A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.
  ☆62Updated 3 years ago
• akabe1 / akabe1-semgrep-rules
  My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)
  ☆41Updated 2 months ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 10 months ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 4 years ago
• synopsys-sig / ATOR-Burp
  ☆87Updated last year
• stacscan / stacs
  Static Token And Credential Scanner
  ☆95Updated 2 years ago
• assetnote / kitebuilder
  ☆25Updated last year
• nccgroup / cq
  ☆116Updated 2 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆90Updated last year
• BSidesSF / ctf-2022-release
  2022 CTF public release
  ☆23Updated 3 years ago
• iosifache / semgrep-rules-manager
  Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂
  ☆98Updated last month
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆33Updated 7 years ago
• ettic-team / EndpointFinder
  ☆53Updated 2 months ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆61Updated 9 months ago
• TheGrandPew / Sanity
  ☆16Updated 4 years ago
• rbowes-r7 / refreshing-soap-exploit
  A PoC exploit for CVE-2022-41622 - a CSRF in F5 BIG-IP control plane that leads to remote root
  ☆21Updated 3 years ago