Alternatives and similar repositories for Pentesting

Users that are interested in Pentesting are comparing it to the libraries listed below

• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 5 years ago
• ibr2 / Go-For-OSCP
  ☆18Updated 8 years ago
• aungthurhahein / Red-Team-Curation-List
  A list to discover work of red team tooling and methodology for penetration testing and security assessment
  ☆78Updated 6 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Updated 7 years ago
• snoopysecurity / Public
  Archive - Repository contains old publicly released presentations, tools, Proof of Concepts and other junk.
  ☆26Updated 6 months ago
• rojan-rijal / Pyrate
  Practice Web App written in python with some vulnerabilities.
  ☆34Updated 4 years ago
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆86Updated 5 years ago
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆39Updated 6 years ago
• PinkP4nther / aws-testing-notes
  Notes as I learn basic AWS penetration testing
  ☆67Updated 6 years ago
• kobs0N / OSCP-Skills
  Skills To Improve Before Heading to OSCP
  ☆15Updated 8 years ago
• tsondt / oscp
  My notebook for OSCP Lab
  ☆26Updated 8 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆41Updated 7 years ago
• EdOverflow / h1-cli
  A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.
  ☆40Updated 7 years ago
• jimmy-ly00 / dirlister
  Create wordlists from source codes files/directories for enumeration
  ☆30Updated 2 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆59Updated 6 years ago
• samhaxr / XXRF-Shots
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Updated 2 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 5 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆48Updated 6 years ago
• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆53Updated 4 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• dsopas / h1-search
  Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
  ☆64Updated 6 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 6 years ago
• hoainam1989 / training-application-security
  This repository for training application security.
  ☆26Updated 6 years ago
• dsopas / XSS-oneliner-payload
  Compilation of JavaScript XSS oneliners payloads that rocks your nuts!
  ☆24Updated 8 years ago
• vavkamil / BBClip
  Bug Bounty Clipboard
  ☆17Updated 5 years ago
• bugbounty-site / GitSecure
  Detect exposed API keys on GitHub commits.
  ☆34Updated 3 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• securityidiots / vhost_buster
  A simple tool with the power of "Go" to find the hidden Vhosts defined at the server.
  ☆19Updated 6 years ago