Alternatives and similar repositories for security-testbeds

Users that are interested in security-testbeds are comparing it to the libraries listed below

• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆49Updated 2 years ago
• google / plusfish
  Plusfish is a classic web application vulnerability scanner/fuzzer and aimed at security professionals
  ☆29Updated 2 years ago
• google / acjs
  ☆10Updated 7 months ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆72Updated 3 years ago
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆18Updated 4 years ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 4 years ago
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated 2 years ago
• google / gke-auditor
  ☆74Updated 4 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆41Updated last week
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆33Updated 2 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• TheGrandPew / Sanity
  ☆16Updated 3 years ago
• s0rcy / semgrep-rules
  Collection of Semgrep rules for security analysis
  ☆10Updated last year
• nccgroup / HTTPSignatures
  A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.
  ☆41Updated 2 years ago
• github / codeql-dubbo-workshop
  ☆60Updated 2 years ago
• o-o-overflow / dc2020q-uploooadit
  HTTP Desync Attack
  ☆28Updated 5 years ago
• assetnote / kitebuilder
  ☆24Updated last year
• OWASP / owasp-cstg
  ☆36Updated 5 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 5 months ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆50Updated 3 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆39Updated 7 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆12Updated 2 years ago
• KarimPwnz / dns-exfil
  Open a DNS server that knows no records but records every request. Used for DNS exfiltration.
  ☆68Updated 3 years ago
• mandatoryprogrammer / PaperChaser
  ☆45Updated 3 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆89Updated 6 months ago
• OWASP / TimeGap-Theory
  An auto-scoring capture-the-flag game focusing on TOCTOU vulnerabilities
  ☆20Updated 4 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 5 years ago
• PortSwigger / web-cache-deception-scanner
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆18Updated 7 years ago
• scarvell / advisories
  ☆27Updated 2 years ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆24Updated 2 months ago