SaaSHub helps you find the best software and product alternatives Learn more β
Top 22 security-testing Open-Source Projects
-
security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
gotestwaf
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
-
akto
Proactive, Open source API security β API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
-
ipa-medit
Memory modification tool for re-signed ipa supports iOS apps running on iPhone and Apple Silicon Mac without jailbreaking.
-
magpie
A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks. (by openraven)
-
sqli-postgres-rce-privesc-hacking-playground
Application with SQL Injection vulnerability and possible privilege escalation. Free vulnerable app for ethical hacking / penetration testing training.
-
dummy
Generator of static files for testing file upload. It can generate the png file of any number of bytes! (by sterrasec)
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Also, for the attack emulation part you might be interested in CALDERA.
Qualys is good. For open source vulnerability scanner for APIs - you can also try https://github.com/akto-api-security/akto
There both do something like what you're looking for.... https://github.com/cloudquery/cloudquery https://github.com/openraven/magpie
Project mention: GitHub - sterrasec/dummy: Generator of static files for testing file upload. It can generate the png file of any number of bytes! | /r/webdev | 2023-10-20
security-testing related posts
- GitHub - sterrasec/dummy: Generator of static files for testing file upload. It can generate the png file of any number of bytes!
- Security focused python training?
- B3nac/InjuredAndroid - A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
- Learning about github
- GitHub - aktsk/ipa-medit: Memory modification tool for re-signed ipa supports iOS apps running on iPhone and Apple Silicon Mac without jailbreaking.
- SySS-Research/WireBug - WireBug is a toolset for Voice-over-IP penetration testing
- aktsk/ipa-medit: memory search and patch tool for resigned ipa without jailbreak
-
A note from our sponsor - SaaSHub
www.saashub.com | 28 Apr 2024
Index
What are some of the best open-source security-testing projects? This list will help you:
Project | Stars | |
---|---|---|
1 | caldera | 5,175 |
2 | security-study-plan | 4,108 |
3 | command-injection-payload-list | 2,582 |
4 | gotestwaf | 1,410 |
5 | awesome-python-security | 894 |
6 | habu | 854 |
7 | akto | 823 |
8 | secureCodeBox | 714 |
9 | red_team_attack_lab | 476 |
10 | nerve | 438 |
11 | MAAD-AF | 333 |
12 | sechub | 240 |
13 | siderophile | 189 |
14 | WireBug | 167 |
15 | ipa-medit | 167 |
16 | magpie | 157 |
17 | UnSAFE_Bank | 135 |
18 | event-generator | 79 |
19 | sqli-postgres-rce-privesc-hacking-playground | 71 |
20 | dummy | 54 |
21 | faraday_plugins | 45 |
22 | aprox | 42 |
Sponsored