The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
-
Updated
Aug 12, 2025 - Python
#
appsec
Here are 105 public repositories matching this topic...
Web path scanner
python security scanner hacking wordlist enumeration penetration-testing bug-bounty fuzzing infosec pentesting bugbounty fuzzer brute appsec hacking-tool dirsearch pentest-tool redteam red-teaming
-
Updated
Jun 17, 2025 - Python
Open Source Vulnerability Management Platform
security devops security-audit collaboration orchestration cybersecurity nmap penetration-testing vulnerability infosec pentesting cve nessus appsec vulnerability-management vulnerability-scanners burpsuite security-automation devsecops continuous-scanning
-
Updated
Jul 30, 2025 - Python
w3af: web application attack and audit framework, the open source web vulnerability scanner.
-
Updated
Feb 22, 2023 - Python
CTF challenge (mostly pwn) files, scripts etc
exploit hacking cybersecurity infosec pwn pentesting ctf capture-the-flag binary-exploitation ctftime appsec offsec
-
Updated
May 26, 2025 - Python
Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.
-
Updated
Sep 1, 2023 - Python
Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
python security phishing python3 emails cybersecurity penetration-testing spf infosec application-security pentesting appsec dmarc deliverability email-security redteam penetration-testing-tools
-
Updated
Jul 27, 2025 - Python
mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.
android kotlin java swift security ios objective-c static-analysis codereview appsec sast mobile-sast
-
Updated
Jan 31, 2025 - Python
A library for detecting known secrets across many web frameworks
python rails flask security jwt django cryptography symfony secrets peoplesoft asp-net express-js appsec javaserver-faces telerik-ui
-
Updated
Aug 22, 2025 - Python
Open Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Data Safety Report.
static-analysis compliance appsec hacktoberfest privacy-policy gdpr devsecops privacy-by-design gdpr-compliant android-privacy-tools privacy-engineering privacy-labels devprivops play-store-data-safety
-
Updated
Jul 28, 2025 - Python
This project is about creating and publishing threat model examples.
-
Updated
Nov 10, 2021 - Python
Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
sql sql-injection exploitation appsec blind-sql-injection sql-payloads database-security blisqy john-ombagi
-
Updated
Mar 24, 2019 - Python
A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations. It supports dynamic payload generation, including BCheck syntax, and can automatically generate Bambdas scripts. Additionally, it converts HTTP requests to JavaScript for enhanced XSS exploitation.
hacking cybersecurity penetration-testing application-security pentesting appsec hacking-tool burpsuite offsec burp-extensions offensivesecurity
-
Updated
Aug 22, 2025 - Python
Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
python security scanner hacking penetration-testing bug-bounty pentesting pentest appsec dirbuster netstalking scanner-web
-
Updated
Nov 8, 2020 - Python
🔍A cutting edge context aware GraphQL API fuzzing tool!
-
Updated
Aug 22, 2025 - Python
Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploitability (runtime execution, configuration, permissions, existence of a mitigation, OS, etc..)
-
Updated
Aug 12, 2023 - Python
Improve this page
Add a description, image, and links to the appsec topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the appsec topic, visit your repo's landing page and select "manage topics."