Alternatives and similar repositories for validation-benchmarks

Users that are interested in validation-benchmarks are comparing it to the libraries listed below

• elttam / semgrep-rules
  ☆199Updated 9 months ago
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆253Updated 9 months ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆138Updated 2 months ago
• faizann24 / rogue
  Automated web vulnerability scanning with LLM agents
  ☆346Updated 2 months ago
• dhammon / ai-goat
  Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.
  ☆297Updated last year
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆51Updated last year
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆432Updated last month
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆205Updated 6 months ago
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆71Updated last year
• ElectrovoltSec / HackBench
  How effective are LLMs in identifying and exploiting security vulnerabilities?
  ☆64Updated 5 months ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆274Updated 5 months ago
• cyproxio / mcp-for-security
  MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. In…
  ☆348Updated this week
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆256Updated 6 months ago
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆111Updated 8 months ago
• PortSwigger / mcp-server
  MCP Server for Burp
  ☆246Updated 2 months ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆180Updated last week
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆176Updated last year
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆40Updated 2 months ago
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆317Updated 9 months ago
• u21h2 / AutoSpear
  AutoSpear
  ☆66Updated last year
• invariantlabs-ai / mcp-injection-experiments
  Code snippets to reproduce MCP tool poisoning attacks.
  ☆177Updated 4 months ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆51Updated 3 months ago
• faizann24 / baby-naptime
  A very simple open source implementation of Google's Project Naptime
  ☆165Updated 5 months ago
• msrkp / MXSS
  Awesome MXSS ??
  ☆52Updated 10 months ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆23Updated 3 years ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆105Updated 6 months ago
• alexdevassy / Machine_Learning_CTF_Challenges
  CTF challenges designed and implemented in machine learning applications
  ☆165Updated 11 months ago
• mnns / LLMFuzzer
  🧠 LLMFuzzer - Fuzzing Framework for Large Language Models 🧠 LLMFuzzer is the first open-source fuzzing framework specifically designed …
  ☆307Updated last year
• bahruzjabiyev / gudifu-fuzzer
  Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
  ☆18Updated last year
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated last year