Alternatives and similar repositories for pentest-tools

Users that are interested in pentest-tools are comparing it to the libraries listed below

• BeLove / avhbf
  Advanced virtual host bruteforcer
  ☆31Updated 9 years ago
• lorenzog / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆108Updated 2 years ago
• 1N3 / HTTPoxyScan
  HTTPoxy Exploit Scanner by 1N3 @CrowdShield
  ☆103Updated 8 years ago
• yehia-mamdouh / XSSYA
  XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation)
  ☆96Updated 2 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆127Updated last year
• beched / hehdirb
  Asynchronous HTTP pipelining directory buster
  ☆24Updated 5 years ago
• skorov / subdomainator
  Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…
  ☆26Updated 7 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago
• feakk / xxxpwn
  Advanced XPath Injection Tool
  ☆34Updated 10 years ago
• koto / gitpillage
  Pillage a git repo found in an accessible web root
  ☆61Updated 14 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆95Updated 7 years ago
• thezawad / rev-door
  rev-door is a small backdoor with only ONE line of PHP code, which takes command from POST data and execute it on server side. It is like…
  ☆26Updated 9 years ago
• SimplySecurity / simplydomain
  Subdomain brute force focused on speed and data serialization
  ☆75Updated 2 years ago
• JacobReynolds / xssHunterExtension
  Chrome Extension for XSS Hunter Payloads
  ☆41Updated 8 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• strawp / web-shells
  Web shells for use in penetration testing
  ☆39Updated 10 years ago
• 0xdevalias / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]
  ☆97Updated 11 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆73Updated 12 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 8 years ago
• glennzw / shodan-hq-nse
  Shodan HQ nmap plugin - passively scan targets
  ☆154Updated 9 years ago
• SpiderLabs / burplay
  Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…
  ☆83Updated 7 years ago
• CoderPirata / XPL-SEARCH
  Search exploits in multiple exploit databases!
  ☆81Updated 4 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆87Updated 10 years ago
• commonexploits / livehosts
  Quick scan to find live hosts on the network/across networks
  ☆48Updated 11 years ago
• SpiderLabs / BurpNotesExtension
  Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…
  ☆67Updated last year
• 1N3 / XSSTracer
  A small python script to check for Cross-Site Tracing (XST)
  ☆135Updated 9 years ago
• SecarmaLabs / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆44Updated 7 years ago
• infosec-au / webappsec-toolkit
  Web Application Security related tools. Includes backdoors, proof of concepts and tricks
  ☆37Updated 10 years ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆43Updated 11 years ago
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆44Updated 4 years ago