Alternatives and similar repositories for vulnerable-code-snippets

Users that are interested in vulnerable-code-snippets are comparing it to the libraries listed below

• PortSwigger / ator
  ☆30Updated last year
• koaj / aws-s3-bucket-wordlist
  Most common AWS S3 bucket names.
  ☆27Updated 4 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆71Updated 3 years ago
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆54Updated 4 years ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆43Updated last year
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆47Updated 2 years ago
• InitRoot / RouteRunner
  Checks if files is accessible based on the source code.
  ☆16Updated last year
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated 10 months ago
• bytehope / wwe
  ☆18Updated 2 months ago
• ApexPredator-InfoSec / AWAE-OSWE
  Review of AWAE.OSWE
  ☆31Updated 3 years ago
• b0n1t0 / gSAST
  gSAST - Grep Static Analysis Security Tool
  ☆12Updated last year
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆27Updated 2 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆39Updated 3 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• harisec / orange-confusion-attacks
  Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
  ☆20Updated 8 months ago
• haqqibrahim / Sling-Shot-R3con
  🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯
  ☆24Updated last year
• blacklanternsecurity / dp_cryptomg
  Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
  ☆52Updated 8 months ago
• Th0h0 / autopoisoner
  Web cache poisoning vulnerability scanner.
  ☆66Updated 3 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆52Updated 3 years ago
• ShutdownRepo / uberfile
  Simple CLI tool for the generation of downloader oneliners for UNIX-like or Windows systems
  ☆41Updated 4 years ago
• PortSwigger / server-side-prototype-pollution
  ☆35Updated 2 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 3 years ago
• 10goto20 / seltzer
  A Burp Suite extension for headless, unattended scanning.
  ☆36Updated 4 years ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆66Updated 2 years ago
• liquidsec / aspnetCryptTools
  Just some random small tools for dealing with asp.net Forms Authentication Cookies
  ☆23Updated 3 years ago
• shelld3v / flydns
  Related subdomains finder
  ☆29Updated 2 years ago
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 3 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆28Updated 3 years ago
• CompassSecurity / burp-copy-request-response
  Burp extension for quickly copying request/response data.
  ☆29Updated 3 weeks ago