Alternatives and similar repositories for Awesome-Pentest

Users that are interested in Awesome-Pentest are comparing it to the libraries listed below

• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆118Updated 3 years ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆176Updated last year
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆94Updated 7 months ago
• DonatoReis / Secbuild
  An automation tool to install the most popular tools for bug bounty or pentesting.
  ☆123Updated 2 months ago
• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆270Updated 5 years ago
• Al1ex / Pentest-Command
  Pentest-Command
  ☆20Updated 4 years ago
• tkmru / lazyCSRF
  A more useful CSRF PoC generator on Burp Suite
  ☆87Updated 3 years ago
• Audi-1 / Awesome-Red-Teaming
  List of Awesome Red Teaming Resources
  ☆46Updated 7 years ago
• alita-ido / PHP-File-Writer
  ☆25Updated 5 years ago
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆115Updated this week
• andripwn / PayloadsAll
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆48Updated 6 years ago
• 0xDexter0us / Log4J-Scanner
  Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.
  ☆102Updated 3 years ago
• profmoriarity / rexsser
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆76Updated 5 years ago
• ethicalhackingplayground / erebus
  Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
  ☆134Updated 4 years ago
• sharathkramadas / k8s-nuclei-templates
  Nuclei templates for K8S security scanning
  ☆101Updated 4 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆185Updated 4 years ago
• agrawalsmart7 / scodescanner
  SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
  ☆163Updated 2 years ago
• Y000o / Payloads_xss_sql_bypass
  ☆183Updated 2 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆117Updated 2 years ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆292Updated 6 years ago
• Ph33rr / Tools-Tips
  ☆14Updated 3 years ago
• imrannissar / Content-discovery
  ☆96Updated 5 years ago
• RedSection / pFuzz
  pFuzz helps us to bypass web application firewall by using different methods at the same time.
  ☆162Updated 4 years ago
• emadshanab / Nmap-NSE-scripts-collection
  ☆171Updated last month
• pikpikcu / nuubi
  Nuubi Tools (Information-ghatering|Scanner|Recon.)
  ☆88Updated 5 years ago
• Moaaz-0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆177Updated last year
• ramiKahmed / Cloud-Penetration-Testing-and-Red-Teaming
  Tools, Resources & Helpful Tips
  ☆14Updated 3 years ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆136Updated last week
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆56Updated 5 years ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆276Updated 11 months ago