appsec

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

cybersecurity infosec application-security pentesting study-guide appsec aws-security study-plan security-testing api-security azure-security appsec-tutorials gcp-security devsecops-university cybersecurity-education study-planner

UpdatedDec 1, 2025

DefectDojo /django-DefectDojo

Star4.4k

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

python kubernetes security automation django analytics owasp vulnerability-databases appsec vulnerability-management hacktoberfest security-orchestration security-automation devsecops vulnerability-correlation

UpdatedDec 18, 2025
HTML

projectdiscovery /interactsh

Star4.1k

An OOB interaction gathering server and client library

dns golang http security ldap smtp bugbounty appsec hacktoberfest oob oast

UpdatedDec 15, 2025
Go

foospidy /payloads

Star3.9k

Git All the Payloads! A collection of web attack payloads.

hacking xss cybersecurity sqli passwords pentest appsec payload payloads web-attack-payloads

UpdatedMay 15, 2023
Shell

openziti /ziti

Star3.8k

The parent project for OpenZiti. Here you will find the executables for a fully zero trust, application embedded, programmable network@openziti

golang networking network overlay vpn mesh overlay-network netsec appsec zero-trust zerotrust zero-trust-network zero-trust-network-access ztna zero-trust-security zero-trust-cloud ztaa ztha secure-networking vpn-2

UpdatedDec 18, 2025
Go

DependencyTrack /dependency-track

Star3.5k

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

security owasp bom vulnerabilities appsec component-analysis nvd vulnerability-detection hacktoberfest sca software-security security-automation devsecops software-composition-analysis bill-of-materials ossindex purl package-url sbom cyclonedx

UpdatedDec 17, 2025
Java

Checkmarx /kics

Star2.5k

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

golang security iac infrastructure-as-code cloudnative appsec vulnerability-detection hacktoberfest vulnerability-scanners security-tools devsecops open-policy-agent

UpdatedDec 17, 2025
Open Policy Agent

Bearer /bearer

Star2.5k

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

security security-audit privacy static-code-analysis static-analysis owasp dataflow vulnerability code-quality compliance vulnerabilities appsec security-scanner gdpr security-automation security-tools devsecops sast devsecops-tools

UpdatedDec 16, 2025
Go

Improve this page

Add a description, image, and links to theappsec topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with theappsec topic, visit your repo's landing page and select "manage topics."

Learn more

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

appsec

Here are 564 public repositories matching this topic...

OWASP /CheatSheetSeries

chaitin /SafeLine

zaproxy /zaproxy

maurosoria /dirsearch

juice-shop /juice-shop

OWASP /wstg

infoslack /awesome-web-hacking

urbanadventurer /WhatWeb

infobyte /faraday

microsoft /Security-101

OWASP /Go-SCP

andresriancho /w3af

jassics /security-study-plan