Alternatives and similar repositories for vulnerable-code-snippets:

Users that are interested in vulnerable-code-snippets are comparing it to the libraries listed below

• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated 10 months ago
• ApexPredator-InfoSec / AWAE-OSWE
  Review of AWAE.OSWE
  ☆31Updated 3 years ago
• PortSwigger / serialization-examples
  ☆39Updated last year
• vulnbe / burpsuite-copy-as-xmlhttprequest
  Copy as XMLHttpRequest BurpSuite extension
  ☆31Updated 4 years ago
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆53Updated 4 years ago
• PortSwigger / ator
  ☆30Updated last year
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 3 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• carlospolop / Pastos
  ☆55Updated 2 years ago
• ShutdownRepo / uberfile
  Simple CLI tool for the generation of downloader oneliners for UNIX-like or Windows systems
  ☆41Updated 4 years ago
• PortSwigger / server-side-prototype-pollution
  ☆35Updated 2 years ago
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆69Updated 3 years ago
• w4fz5uck5 / Pentest-notes
  Pentest stuff
  ☆49Updated last year
• SecAuraYT / OSWE
  Repo for OSWE related video content for @SecAura Youtube Channel
  ☆32Updated 3 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆71Updated 3 years ago
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆31Updated 2 weeks ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆43Updated last year
• CompassSecurity / burp-copy-request-response
  Burp extension for quickly copying request/response data.
  ☆29Updated this week
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 3 months ago
• b0n1t0 / gSAST
  gSAST - Grep Static Analysis Security Tool
  ☆11Updated last year
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆27Updated 2 years ago
• pimps / pdf-NTLMLeaker
  This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"
  ☆26Updated 6 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆34Updated 3 weeks ago
• spyx / ParamAngler
  ☆27Updated 2 years ago
• 10goto20 / seltzer
  A Burp Suite extension for headless, unattended scanning.
  ☆36Updated 4 years ago
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆29Updated last year
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆52Updated 3 years ago
• InitRoot / RouteRunner
  Checks if files is accessible based on the source code.
  ☆16Updated last year
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆39Updated 3 years ago
• blacklanternsecurity / dp_cryptomg
  Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
  ☆50Updated 8 months ago