Alternatives and similar repositories for security-testbeds

Users that are interested in security-testbeds are comparing it to the libraries listed below

• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆51Updated 2 years ago
• doyensec / Unsafe-Unpacking
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆42Updated 11 months ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆15Updated 2 years ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆72Updated 4 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆95Updated 2 years ago
• nccgroup / HTTPSignatures
  A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.
  ☆42Updated 3 years ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆24Updated 4 years ago
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆19Updated 4 years ago
• BSidesSF / ctf-2022-release
  2022 CTF public release
  ☆23Updated 3 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 6 months ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆34Updated 3 years ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 10 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆90Updated last year
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• vp777 / surferFTP
  SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients
  ☆70Updated 4 years ago
• github / codeql-dubbo-workshop
  ☆60Updated 2 years ago
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆43Updated 2 years ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆33Updated 8 months ago
• o-o-overflow / dc2020q-uploooadit
  HTTP Desync Attack
  ☆28Updated 5 years ago
• GitHubSecurityLab / ruby-unsafe-deserialization
  Proof of Concepts for unsafe deserialization in Ruby
  ☆17Updated last year
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 4 years ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 4 years ago
• elttam / rsu-cracker
  ☆33Updated 2 years ago
• morganc3 / KOAuth
  OAuth 2.0 Dynamic Security Scanner
  ☆33Updated 4 years ago
• ProZachJ / ducktales
  Python's handling of NaN is....interesting?broken?...this project illustrates the issue
  ☆13Updated 3 years ago
• TheGrandPew / Sanity
  ☆16Updated 4 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• alt3kx / wafparan01d3
  Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
  ☆24Updated 4 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆46Updated this week
• assetnote / kitebuilder
  ☆25Updated last year