Alternatives and similar repositories for oshp-validator

Users that are interested in oshp-validator are comparing it to the libraries listed below

• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆160Updated this week
• OWASP / www-project-security-champions-guidebook
  OWASP Foundation Web Respository
  ☆20Updated 3 months ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆220Updated 2 weeks ago
• nccgroup / ccs
  ☆111Updated 2 years ago
• owaspsamm / core
  Core model including reused documentation
  ☆98Updated 3 weeks ago
• The-Login / DNS-Analysis-Server
  Tools to assess DNS security.
  ☆152Updated last year
• optiv / rest-api-goat
  ☆81Updated 2 years ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆126Updated 2 months ago
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆74Updated 2 years ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆126Updated 2 years ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆238Updated last year
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆123Updated last year
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆251Updated 2 years ago
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆119Updated last year
• padok-team / cognito-scanner
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆106Updated last year
• trufflesecurity / of-CORS
  ☆152Updated last year
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆301Updated 2 weeks ago
• feeltheajf / trufflehog3
  Find secrets in your codebase
  ☆123Updated 3 months ago
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆105Updated last year
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆108Updated last year
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆163Updated 2 weeks ago
• padok-team / yatas
  A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
  ☆327Updated last month
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆233Updated last year
• Checkmarx / capital
  A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…
  ☆293Updated last year
• punk-security / secret-magpie
  Secret Magpie - Secret Detection Tool
  ☆229Updated 11 months ago
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆110Updated 5 months ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆281Updated 4 months ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆95Updated 5 months ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆192Updated 10 months ago
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆158Updated 3 years ago