Alternatives and similar repositories for web-app-exploitation

Users that are interested in web-app-exploitation are comparing it to the libraries listed below

• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆91Updated 2 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆54Updated 2 years ago
• drak3hft7 / OSCP-Exam-Report-Template
  Template used for my OSCP exam.
  ☆30Updated 3 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 5 years ago
• iamthefrogy / bucketbunny
  AWS S3 open bucket poc automated script.
  ☆57Updated 4 years ago
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆72Updated 5 years ago
• emadshanab / VOIP-Pentesting-checklist-Cheatsheet-Tools
  ☆55Updated 4 years ago
• v1ll41n / H1-Report-Finder
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42Updated 5 years ago
• purabparihar / Web-Application-Pentest-Checklist
  ☆22Updated 4 years ago
• hassan0x / ReconHunter
  Attack Surface Discovery Tool
  ☆110Updated last year
• J1NNX26 / resources
  A curated list of different pentesting resources
  ☆29Updated 3 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆99Updated 3 years ago
• Vanshal / AWAE-PREP
  ☆17Updated 4 years ago
• six2dez / obsidian-pentesting-vault
  Sample Obsidian's vault for web pentesting
  ☆100Updated last year
• GainSec / TreeHouse-Wordlists
  Wordlist for Hacking, Penetration Testing, Vulnerability Assessments and More
  ☆63Updated last year
• ahmad0x1 / ARWAD
  Advanced Reconnaissance and Web Application Discovery
  ☆89Updated 3 years ago
• rinetd / BurpSuite-1
  BurpSuite using the document and some extensions
  ☆70Updated 5 years ago
• m0chan / pwk-cheatsheet
  ☆51Updated 8 years ago
• 0xb1tByte / eWPTXv1-Journey
  This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurity
  ☆23Updated 5 years ago
• fuzz-security / Active-Directory-Exploitation-Cheat-Sheet
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆50Updated 5 years ago
• emadshanab / Nmap-NSE-scripts-collection
  ☆171Updated 3 years ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆124Updated 3 years ago
• gh0x0st / OSWP-Expanding-Your-Reach
  You don't need wires to be connected
  ☆41Updated 5 years ago
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆89Updated 3 years ago
• indigos33k3r / portainer-pentest-lab
  OWASP practice lab, just a few copy/pastes away. Fully stacked and ready to go with Docker
  ☆19Updated 6 years ago
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago
• VitthalS / ivna
  Intentionally Vulnerable Nodejs Application & APIs
  ☆22Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆131Updated 4 years ago
• Anon-Exploiter / subdomainsEnumerator
  A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.
  ☆72Updated last year
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆63Updated 5 years ago