880 Open source projects that are alternatives of or similar to Securityrat

Next generation web scanner

Some good resources for getting started with application security

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

OWASP Zed Attack Proxy project landing page.

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

The OWASP ZAP Heads Up Display (HUD)

OWASP Code Review Guide Web Repository

Additional Resources For Securing The Stack Tutorials

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

Full Nuclei automation script with logic explanation.

Integrates Dependency-Check reports into SonarQube

Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

A simple PHP application to learn SQL Injection detection and exploitation techniques.

Application Security Awareness Training

GitHub Action to set up Fortify ScanCentral Client

Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

🎯 RFI/LFI Payload List

A curated list of resources for learning about application security

OWASP ZAP Add-ons

Hacking tools

Documentation for Essential Node.js Security

The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.

Integrates OWASP Zed Attack Proxy reports into SonarQube

Automated Penetration Testing Framework

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

The OWASP ZAP core project

Curated list of popular Java and Kotlin frameworks, libraries and tools related to software testing, quality assurance and adjacent processes automation.

Implementation on Go projects book "Automate the Boring Stuff with Python: Practical Programming for Total Beginners"

A Devtools driver for web automation and scraping

Defcon24 Workshop Contents : Ninja Level Infrastructure Monitoring

Script for dynamically updating a CloudFlare DNS record. (Deprecated)

Web Application recon automation

My Main Instance

Ansible Collection for VMWare

An Elixir toolkit for performing tasks on one or more servers, built on top of Erlang’s SSH application.

My Home Assistant Config. For more Information visit ->

Auto Like reactions and unlike Facebook Status, Comments, Photos, group posts, page posts, change facebook theme and skin colors, auto tag members in group post.. Auto Comment and Auto Reply to all Comments... Facebook Auto Like Unlimited 2019 is 100% safe to use...

The biggest dump of scripts ever!

Chrome Devtools Protocol client for PHP

This is a RHCSA8 study environment built with Vagrant/Ansible

A WebdriverIO plugin. Additional commands for taking screenshots with WebdriverIO.

Minimalistic graph card for Home Assistant Lovelace UI

Get a programmable email address. Automate what happens when you receive emails. It's like Zapier for devs who hate emails.

beets based mitm of your torrent client and music player

AET - a system that detects visual changes on web sites and performs basic page health checks

Oracle WebLogic Server Deploy Tooling

A UiAutomator on android, does not need root access(安卓平台上的JavaScript自动化工具)

Automate the creation of Python Selenium Scripts by drawing coloured boxes on webpage elements

AWX Project