Alternatives and similar repositories for Pentesting

Users that are interested in Pentesting are comparing it to the libraries listed below

• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• kobs0N / OSCP-Skills
  Skills To Improve Before Heading to OSCP
  ☆15Updated 8 years ago
• dsopas / XSS-oneliner-payload
  Compilation of JavaScript XSS oneliners payloads that rocks your nuts!
  ☆25Updated 7 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 6 years ago
• ibr2 / Go-For-OSCP
  ☆18Updated 7 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• MrTaherAmine / pentest-management
  Simple webinterface combining different recon tools.
  ☆12Updated 7 years ago
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 5 years ago
• hahwul / ras-fuzzer
  RAS(RAndom Subdomain) Fuzzer
  ☆42Updated 5 years ago
• mohitkhemchandani / OSCE_BIBLE
  A collection of OSCE preparation resources.
  ☆24Updated 5 years ago
• ni8walk3r / JWT-Exploitation
  Collection of different exploitation scenarios of JWT.
  ☆21Updated 3 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 6 years ago
• riyazwalikar / injection-attacks-nosql-talk
  Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
  ☆22Updated 6 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆40Updated 6 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆58Updated 6 years ago
• securityidiots / vhost_buster
  A simple tool with the power of "Go" to find the hidden Vhosts defined at the server.
  ☆19Updated 6 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆39Updated 5 years ago
• rohitcoder / SubR3con
  SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status …
  ☆18Updated 5 years ago
• DFC302 / subseeker
  A sub-domain enumeration tool
  ☆19Updated 5 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• tsondt / oscp
  My notebook for OSCP Lab
  ☆25Updated 7 years ago
• nccgroup / clickjacking-poc
  Clickjacking PoC Generator
  ☆35Updated 4 years ago
• random-robbie / s3-tko
  AWS S3 Bucket Finder.
  ☆15Updated 5 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• vavkamil / BBClip
  Bug Bounty Clipboard
  ☆17Updated 5 years ago
• nullenc0de / Project-X
  Reconnaisance Tool
  ☆11Updated 5 years ago
• rojan-rijal / LeakFinder
  https://sites.google.com/securifyinc.com/secblogs/finding-leaked-sensitive-data
  ☆17Updated 6 years ago