Al1ex / Awesome-Pentest
Collection of penetration testing tools
☆81Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for Awesome-Pentest
- this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.☆116Updated 2 years ago
- Pentest-Command☆20Updated 3 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆88Updated last year
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- Small Tool written based on chaos from projectdiscovery.io☆165Updated 3 weeks ago
- ☆25Updated 4 years ago
- This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.☆75Updated 4 years ago
- ☆100Updated 2 years ago
- ☆14Updated 2 years ago
- essential templates for kenzer [DEPRECATED]☆108Updated last year
- burpsuite extension for check and extract sensitive request parameter☆110Updated 3 years ago
- A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.☆104Updated last week
- pFuzz helps us to bypass web application firewall by using different methods at the same time.☆157Updated 3 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆43Updated 5 years ago
- Top disclosed reports from HackerOne☆8Updated 4 years ago
- Script to quickly install Golang and the most popular PD repos☆53Updated 2 months ago
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities☆184Updated 3 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆295Updated 5 years ago
- An automation tool to install the most popular tools for bug bounty or pentesting.☆119Updated 3 months ago
- Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.☆101Updated 2 years ago
- Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is writt…☆96Updated last year
- Totally Insecure Web Application Project (TIWAP)☆168Updated 10 months ago
- Nuclei Templates - Here you will find the templates I use while hunting☆116Updated 3 years ago
- A Web-UI for subdomain enumeration (subfinder)☆53Updated 4 years ago
- Nuclei templates for K8S security scanning☆102Updated 2 years ago
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆120Updated 3 weeks ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Encoder to bypass WAF filters using XOR operations.☆250Updated 2 years ago
- Scan Victim Backup Directories & Backup Files☆178Updated last year
- Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519☆60Updated 2 months ago