Alternatives and similar repositories for security-testbeds

Users that are interested in security-testbeds are comparing it to the libraries listed below

• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆51Updated 2 years ago
• doyensec / Unsafe-Unpacking
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆42Updated last year
• nccgroup / HTTPSignatures
  A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.
  ☆42Updated 3 years ago
• github / codeql-dubbo-workshop
  ☆60Updated 3 years ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆72Updated 4 years ago
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆19Updated 4 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 7 months ago
• knqyf263 / CVE-2020-8617
  PoC for CVE-2020-8617 (BIND)
  ☆45Updated 5 years ago
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆33Updated 7 years ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 4 years ago
• artsploit / rogue-jndi
  A malicious LDAP server for JNDI injection attacks
  ☆76Updated last year
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆16Updated 2 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 11 months ago
• silentsignal / burp-uuid
  UUID issues for Burp Suite
  ☆52Updated 3 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆95Updated 2 years ago
• nccgroup / cq
  ☆116Updated 2 years ago
• gquere / CVE-2020-7931
  Hacking Artifactory with server side template injection
  ☆51Updated 5 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 4 years ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆54Updated 3 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆90Updated last year
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆77Updated 5 years ago
• doyensec / CVE-2022-39299_PoC_Generator
  A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…
  ☆19Updated 2 years ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆34Updated 3 years ago
• o-o-overflow / dc2020q-uploooadit
  HTTP Desync Attack
  ☆28Updated 5 years ago
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• BSidesSF / ctf-2022-release
  2022 CTF public release
  ☆23Updated 3 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆109Updated 6 years ago
• neex / ghostinthepdf
  ☆170Updated 4 years ago
• synopsys-sig / ATOR-Burp
  ☆87Updated last year
• apiiro / combobulator
  Dependency Combobulator
  ☆95Updated 2 years ago