Alternatives and similar repositories for CTFs

Users that are interested in CTFs are comparing it to the libraries listed below

• Edd13Mora / RedFlags
  ☆14Updated last year
• hakivvi / CVE-2025-23369
  GitHub Entreprise Server SAML authentication bypass (CVE-2025-23369) exploit
  ☆35Updated 4 months ago
• RikunjSindhwad / Task-Ninja-Workflows
  This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja
  ☆23Updated 10 months ago
• 0xarun / s1mr3c
  Simple recon tool automates your recon process
  ☆17Updated 2 years ago
• egrullon / Wounty
  Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…
  ☆14Updated 3 years ago
• Sicks3c / Reconizer
  ☆38Updated 4 years ago
• SirBugs / Offy
  offy is a tool for bugbounty hunters to save money in their EC2 instances
  ☆13Updated last year
• gwen001 / detectify-cves
  Find CVEs that don't have a Detectify modules.
  ☆22Updated 2 years ago
• Xib3rR4dAr / WannaRace
  WebApp intentionally made vulnerable to Race Condition for practicing Race Condition
  ☆25Updated 3 years ago
• HernanRodriguez1 / ScanMySQLiErrorBased-Nuclei
  ☆21Updated 2 years ago
• emadshanab / Extract-and-Probe-all-the-ips-associated-with-same-host-via-httpx
  ☆13Updated 3 years ago
• xnl-h4ck3r / auto-repeater
  Automated HTTP Request Repeating With Burp Suite
  ☆38Updated 2 years ago
• HawSec / ginger
  A security assessment tool for Hitachi Vantara's Pentaho Business Analytics platform.
  ☆14Updated 3 years ago
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• deepak0401 / Front-Page-Exploit
  HTTP requests of FrontPage expolit
  ☆25Updated 11 years ago
• aaditya2098 / noobstuffs
  Xss payload for bypassing waf
  ☆16Updated 5 years ago
• reewardius / bbDomains.txt
  ☆13Updated last year
• byt3hx / gup
  gup aka Get All Urls parameters to create wordlists for brute forcing parameters.
  ☆18Updated 3 years ago
• rohsec / chaosDump
  A powerful and clean bash script to dump and extract information from Project Discovery's Chaos Project https://chaos.projectdiscovery.io…
  ☆25Updated 3 years ago
• emadshanab / Subdomains-brutforce-wordlists-collection
  ☆38Updated 4 years ago
• HernanRodriguez1 / ScanReflectedSSTI
  Template Nuclei SSTI
  ☆30Updated last year
• r00tkie / grep-pattern
  collection of various grep patterns collected from tomnomnom/gf and other places
  ☆22Updated 4 years ago
• erickfernandox / CVE-2024-4956
  Unauthenticated Path Traversal in Nexus Repository 3
  ☆2Updated last year
• xnl-h4ck3r / HandE-Burp-Extension
  H&E- Burp Highlighter and Extractor
  ☆18Updated 2 years ago
• UncleJ4ck / Boxer
  Auto scanning tool that will help you during playing on HackTheBox, TryHackMe...etc
  ☆18Updated 2 years ago
• notmarshmllow / credax
  Credax - Fuzzing Tool with Slack Notifications. Also removes false positive responses.
  ☆10Updated 3 years ago
• HernanRodriguez1 / EnumParameter
  ☆15Updated last year
• BrownBearSec / Utils-and-Wrappers
  A repo for tools, utils, and wrappers that are to small to put in their own repo.
  ☆23Updated 2 years ago
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆29Updated 3 years ago
• z3dc0ps / BBSSRF
  BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection
  ☆38Updated 2 years ago