Alternatives and similar repositories for pentest-tools

Users that are interested in pentest-tools are comparing it to the libraries listed below

• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago
• beched / hehdirb
  Asynchronous HTTP pipelining directory buster
  ☆24Updated 4 years ago
• BeLove / avhbf
  Advanced virtual host bruteforcer
  ☆31Updated 9 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆52Updated 4 years ago
• attackercan / burp-xss-sql-plugin
  ☆44Updated 8 years ago
• infosec-au / webappsec-toolkit
  Web Application Security related tools. Includes backdoors, proof of concepts and tricks
  ☆37Updated 10 years ago
• feakk / xxxpwn
  Advanced XPath Injection Tool
  ☆34Updated 10 years ago
• strawp / web-shells
  Web shells for use in penetration testing
  ☆39Updated 10 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 8 years ago
• skorov / subdomainator
  Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…
  ☆26Updated 7 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 7 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 7 years ago
• thezawad / rev-door
  rev-door is a small backdoor with only ONE line of PHP code, which takes command from POST data and execute it on server side. It is like…
  ☆26Updated 9 years ago
• secman-pl / oscp
  ☆26Updated 8 years ago
• ZephrFish / AttackDeploy
  Scripts for Deploying new server
  ☆48Updated last month
• JacobReynolds / xssHunterExtension
  Chrome Extension for XSS Hunter Payloads
  ☆41Updated 8 years ago
• yehia-mamdouh / XSSYA
  XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation)
  ☆96Updated 2 years ago
• tahmed11 / strutsy
  Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability
  ☆10Updated 6 years ago
• DanMcInerney / autorelay
  Automatically performs the SMB relay attack
  ☆72Updated 9 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆38Updated 8 years ago
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆30Updated 7 years ago
• koto / gitpillage
  Pillage a git repo found in an accessible web root
  ☆61Updated 14 years ago
• bored-engineer / hackeroni-slack-disclosure-bot
  HackerOne Public Disclosure Slack Bot
  ☆20Updated 2 years ago
• avicoder / Hackerone
  Hackerone disclosed report URL Aggregator
  ☆30Updated 6 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆73Updated 12 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 10 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• rummykhan / SQL-nightmare
  SQL SERVER Exploitation.
  ☆27Updated 8 years ago
• omercnet / BurpJDSer-ng
  BurpJDSer-ng
  ☆28Updated last week
• uranium238 / WhatTo
  "What To" guide for finding vulnerabilities in sites.
  ☆21Updated 7 years ago