appsec topic
dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
mutillidae
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, secu...
zaproxy
The ZAP core project
dependency-check-sonar-plugin
Integrates Dependency-Check reports into SonarQube
ovaa
Oversecured Vulnerable Android App
pidrila
Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
web-methodology
Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
agartha
a burp extension creates dynamic payloads to reveal injection flaws(LFI, RCE, SQLi), generates user access tables to spot authentication/authorization issues, and copys Http requests as JavaScript cod...
rfi-lfi-payload-list
🎯 RFI/LFI Payload List
njsscan
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.