Alternatives and similar repositories for lets-be-bad-guys

Users that are interested in lets-be-bad-guys are comparing it to the libraries listed below

• NetSPI / django.nV
  Vulnerable Django Application
  ☆205Updated 3 years ago
• uber-archive / focuson
  A tool to surface security issues in python code
  ☆226Updated 8 years ago
• cneill / appsec-resources
  Resources for developers and security engineers to learn the ropes of application security
  ☆97Updated 6 years ago
• lyft / bandit-high-entropy-string
  A high entropy string plugin for OpenStack's bandit project
  ☆48Updated 3 years ago
• WithSecureOpenSource / mittn
  Mittn: Security test tool runner for test automation in CI
  ☆195Updated last year
• mozilla-services / GitHub-Audit
  INACTIVE - Collection of Tools & Procedures for double checking GitHub configurations
  ☆137Updated last year
• IOActive / RepoSsessed
  A project designed to parse public source code repositories and find various types of vulnerabilities.
  ☆192Updated 7 years ago
• aparsons / bag-of-holding
  An application to assist in the organization and prioritization of software security activities.
  ☆139Updated 4 years ago
• opendns / Security_Ninjas_AppSec_Training
  OpenDNS application security training program
  ☆230Updated 4 years ago
• ant4g0nist / Susanoo
  A REST API security testing framework.
  ☆326Updated 3 years ago
• duo-labs / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure we're writing secure Python code.
  ☆329Updated 5 years ago
• mozilla / minion
  Minion
  ☆354Updated 6 years ago
• jfalken / github_commit_crawler
  Tool used to continuously monitor a Github org for mistaken public commits
  ☆165Updated 9 years ago
• nccgroup / AWS-recipes
  A number of Recipes for AWS
  ☆194Updated 6 years ago
• stripe-ctf / stripe-ctf-2.0
  Capture the Flag: Web Edition https://stripe.com/blog/capture-the-flag-20
  ☆276Updated 9 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• avishayil / caponeme
  Repository demonstrating the Capital One breach on your AWS account
  ☆243Updated 4 years ago
• veorq / blueflower
  a grep -r for secrets
  ☆178Updated 3 years ago
• snare / idiot
  Your best is an idiot
  ☆138Updated 9 years ago
• payatu / Tiredful-API
  An intentionally designed broken web application based on REST API.
  ☆575Updated 4 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆179Updated 6 years ago
• mozilla / seasponge
  SeaSponge is an accessible threat modelling tool from Mozilla
  ☆278Updated 7 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆128Updated 4 years ago
• leesoh / yams
  A collection of Ansible roles for automating infosec builds.
  ☆93Updated 7 years ago
• krmaxwell / coding-entertainment
  Puzzles, challenges, games, CTFs, and other entertainment via coding
  ☆203Updated 4 years ago
• prezi / reddalert
  AWS risky security change detector based on EDDA.
  ☆82Updated 6 years ago
• lightbulb-framework / lightbulb-framework
  Tools for auditing WAFS
  ☆460Updated 4 years ago
• jordan-wright / ossmalware
  ☆93Updated 2 years ago
• bouk / extractdata
  Live at http://extractdata.club
  ☆166Updated 8 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆139Updated 11 months ago