Alternatives and similar repositories for secure-code-review-checklist:

Users that are interested in secure-code-review-checklist are comparing it to the libraries listed below

• mgreiler / secure-code-review-checklist
  ☆184Updated last year
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆309Updated 10 months ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆120Updated 2 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆174Updated 2 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆134Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆177Updated 7 months ago
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆141Updated 3 years ago
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆235Updated 5 years ago
• elttam / semgrep-rules
  ☆180Updated 3 months ago
• absoluteappsec / handouts
  materials we hand out
  ☆141Updated last week
• deletehead / awae_oswe_prep
  Stuff done in preparation for AWAE course and OSWE certification
  ☆151Updated 4 years ago
• m6a-UdS / dvca
  Damn Vulnerable Cloud Application
  ☆191Updated 6 years ago
• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆102Updated 7 months ago
• tprynn / web-methodology
  Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
  ☆202Updated 3 months ago
• s0j0hn / AWAE-OSWE-Prep
  ☆128Updated 4 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆265Updated last year
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆198Updated last year
• ngalongc / openapi_security_scanner
  ☆172Updated 3 years ago
• yaworsk / bugbounty
  All Things Bug Bounty
  ☆113Updated 2 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆467Updated last year
• secdec / attack-surface-detector-cli
  ☆77Updated 2 years ago
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆78Updated 2 years ago
• jbarone / xxelab
  A simple web app with a XXE vulnerability.
  ☆225Updated 3 years ago
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆142Updated this week
• blabla1337 / skf-labs
  Repo for all the OWASP-SKF Docker lab examples
  ☆445Updated 6 months ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆392Updated 7 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆201Updated last year
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆256Updated 2 years ago
• kajalNair / OSWE-Prep
  An OSWE Guide
  ☆112Updated 4 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆121Updated 2 years ago