Alternatives and similar repositories for validation-benchmarks

Users that are interested in validation-benchmarks are comparing it to the libraries listed below

• elttam / semgrep-rules
  ☆197Updated 9 months ago
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆253Updated 9 months ago
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆70Updated last year
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆131Updated last month
• faizann24 / rogue
  Automated web vulnerability scanning with LLM agents
  ☆341Updated last month
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆196Updated 6 months ago
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆428Updated 2 weeks ago
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆51Updated last year
• ElectrovoltSec / HackBench
  How effective are LLMs in identifying and exploiting security vulnerabilities?
  ☆59Updated 5 months ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆272Updated 4 months ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆51Updated 3 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated last year
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆166Updated 11 months ago
• msrkp / MXSS
  Awesome MXSS ??
  ☆52Updated 10 months ago
• dhammon / ai-goat
  Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.
  ☆293Updated 11 months ago
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆111Updated 7 months ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆176Updated last week
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆105Updated 6 months ago
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆253Updated 5 months ago
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆185Updated 2 months ago
• ngalongc / AuthzAI
  ☆179Updated 9 months ago
• google / protobuf-extensibility-for-burp
  ☆87Updated last year
• bahruzjabiyev / gudifu-fuzzer
  Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
  ☆18Updated last year
• cyproxio / mcp-for-security
  MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. In…
  ☆324Updated 2 weeks ago
• faizann24 / baby-naptime
  A very simple open source implementation of Google's Project Naptime
  ☆161Updated 4 months ago
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆315Updated 8 months ago
• epi052 / feroxfuzz
  A structure-aware HTTP fuzzing library
  ☆214Updated 7 months ago
• DataDog / security-labs-pocs
  Proof of concept code for Datadog Security Labs referenced exploits.
  ☆442Updated 4 months ago
• PortSwigger / mcp-server
  MCP Server for Burp
  ☆220Updated last month
• alexdevassy / Machine_Learning_CTF_Challenges
  CTF challenges designed and implemented in machine learning applications
  ☆162Updated 11 months ago