Alternatives and similar repositories for play-webgoat:

Users that are interested in play-webgoat are comparing it to the libraries listed below

• leobenkel / Soteria
  Plugin to block compilation when unapproved dependencies are used or code styling does not comply.
  ☆47Updated 6 months ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆40Updated 9 months ago
• wsargent / paranoid-java-serialization
  Adds a guard to disable ObjectInputStream.readObject
  ☆11Updated 9 years ago
• PortSwigger / headless-burp
  Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
  ☆25Updated 6 years ago
• nightwatchcybersecurity / airflowscan
  Checklist and tools for increasing security of Apache Airflow
  ☆32Updated 3 years ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated 2 years ago
• PortSwigger / attack-surface-detector
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆14Updated 3 years ago
• Bearer / bearer-rules
  Rules for Bearer SAST
  ☆26Updated this week
• sbt / sbt-sbom
  sbt bom.xml exporter
  ☆27Updated this week
• spyd3r / owasp-asvs-github
  ☆18Updated 4 years ago
• shivsahni / NSDetect
  ☆22Updated 2 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• hakbot / hakbot-origin-controller
  Vendor-Neutral Security Tool Automation Controller (over REST)
  ☆29Updated 5 years ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• OWASP / owasp-cstg
  ☆34Updated 4 years ago
• playframework / interplay
  Common sbt plugins for Play modules
  ☆12Updated last year
• shawnmckinney / remote-code-execution-sample
  Demonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.
  ☆25Updated last year
• OpenSecurityResearch / jmsdigger
  JMSDigger is JMS API basedEnterprise Messaging Application assessment tool
  ☆30Updated 10 years ago
• scalalandio / enumz
  One enum type class to rule them all
  ☆28Updated 2 weeks ago
• lpredova / Katyusha
  💣 REST and SOAP web API fuzzer
  ☆26Updated 8 years ago
• scalacenter / sbt-dependency-submission
  A Github Action to submit the dependency graph of an sbt build to the Dependency Submission API
  ☆64Updated this week
• efoncubierta / cloudspec
  CloudSpec is an open source tool for validating your resources in your cloud providers using a logical language.
  ☆25Updated 3 years ago
• anandtiwarics / python-burp-rest-api
  Python Package for burprestapi
  ☆16Updated 5 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆35Updated 3 years ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated 2 years ago
• nscuro / fdnssearch
  Swiftly search FDNS datasets from Rapid7 Open Data
  ☆21Updated 2 years ago
• apache / pekko-persistence-jdbc
  Asynchronously writes journal and snapshot entries to configured JDBC databases so that Apache Pekko Actors can recover state
  ☆15Updated last week
• fbogner / race2rce
  A PoC that shows that Web Vulnerabilities can indeed be interesting
  ☆19Updated 6 years ago
• riyazwalikar / injection-attacks-nosql-talk
  Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
  ☆22Updated 5 years ago