Alternatives and similar repositories for Awesome-Pentest

Users that are interested in Awesome-Pentest are comparing it to the libraries listed below

• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆117Updated 3 years ago
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆92Updated last month
• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆265Updated 4 years ago
• Al1ex / Pentest-Command
  Pentest-Command
  ☆20Updated 3 years ago
• 0xDexter0us / Log4J-Scanner
  Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.
  ☆100Updated 3 years ago
• DonatoReis / Secbuild
  An automation tool to install the most popular tools for bug bounty or pentesting.
  ☆124Updated 11 months ago
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆114Updated 8 months ago
• tkmru / lazyCSRF
  A more useful CSRF PoC generator on Burp Suite
  ☆86Updated 2 years ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆174Updated last year
• profmoriarity / rexsser
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆75Updated 4 years ago
• Ph33rr / Tools-Tips
  ☆14Updated 3 years ago
• alita-ido / PHP-File-Writer
  ☆25Updated 4 years ago
• sharathkramadas / k8s-nuclei-templates
  Nuclei templates for K8S security scanning
  ☆101Updated 3 years ago
• RedSection / pFuzz
  pFuzz helps us to bypass web application firewall by using different methods at the same time.
  ☆160Updated 4 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆183Updated 4 years ago
• andripwn / PayloadsAll
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆47Updated 6 years ago
• Y000o / Payloads_xss_sql_bypass
  ☆182Updated last year
• emadshanab / Nmap-NSE-scripts-collection
  ☆170Updated 3 years ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆134Updated last month
• ping-0day / templates
  ☆58Updated 3 years ago
• Sjord / jwtdemo
  Practice hacking JWT tokens
  ☆115Updated 2 years ago
• ethicalhackingplayground / erebus
  Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
  ☆132Updated 4 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆117Updated 2 years ago
• moeinfatehi / Admin-Panel_Finder
  A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
  ☆121Updated 3 years ago
• NitinYadav00 / My-Nuclei-Templates
  Nuclei Templates - Here you will find the templates I use while hunting
  ☆119Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆54Updated 5 years ago
• DrunkenShells / Disclosures
  Public Disclosures
  ☆91Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆173Updated 9 months ago
• agrawalsmart7 / scodescanner
  SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
  ☆161Updated 2 years ago