Alternatives and similar repositories for playbooks

Users that are interested in playbooks are comparing it to the libraries listed below

• MrTurvey / Burp2API
  Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.
  ☆67Updated 9 months ago
• tjnull / pentest-arsenal
  A collection of tools that I use in CTF's or for assessments
  ☆101Updated 7 months ago
• PanosoikoGr / CloudTap
  Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…
  ☆43Updated 2 months ago
• jumpycastle / rre-burp
  Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025
  ☆90Updated last month
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• kartikdurg / Terrible-Thick-Client
  "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.
  ☆20Updated 2 years ago
• Tib3rius / Copier
  A Burp extension to help pentesters copy requests / responses for reports.
  ☆49Updated 2 months ago
• securelayer7 / not-a-vuln-list
  Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report
  ☆13Updated 7 months ago
• d-sec-net / VPK
  Vast.ai Password Kracking
  ☆85Updated 3 months ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆58Updated last year
• Verizon / verizon_burp_extensions_ai
  Verizon Burp Extensions: AI Suite
  ☆138Updated 4 months ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆70Updated 3 years ago
• vuusale / ParaMutator
  API fuzzer that exposes security flaws by sending malformed inputs
  ☆16Updated last year
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆40Updated 2 months ago
• aleemladha / SANS-Workshop-Lab
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆33Updated last month
• GhnimiWael / LDAPHunter
  LDAP Enumeration Tool for Pentesters
  ☆48Updated 4 months ago
• websecnl / MagicByteSelector
  Burp Suite Extension for inserting a magic byte into responder's request
  ☆25Updated last year
• Marmeus / mad-hyperv
  Ansible + Vagrant + Hyper-V + Vulnerable AD 😎
  ☆91Updated last year
• 0xJs / OSCP_cheatsheet
  ☆38Updated 4 years ago
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆42Updated last year
• rndinfosecguy / OSWA-Experience-And-Exam-Preparation
  My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam
  ☆40Updated 2 years ago
• Neuvik / BucketHoarder
  ☆55Updated last year
• Hackcraft-Labs / Fairplay
  Artifact monitoring that ensures fairplay
  ☆78Updated 7 months ago
• aancw / SSLPinDetect
  SSLPinDetect is a tool for analyzing Android APKs to detect SSL pinning implementations by scanning for known patterns in decompiled code…
  ☆41Updated 2 weeks ago
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆44Updated last month
• evildaemond / physsec-methodology
  A public, open source physical security methodology
  ☆46Updated last year
• lem0nSec / eCXD
  A collection of exploits and exercises developed while preparing for the eCXD exam!
  ☆31Updated 2 years ago
• gjfvieira / frilane
  Automated iOS Frida Gadget injection and Testflight deployment using Frida and Fastlane
  ☆14Updated 2 years ago
• hnsecurity / kraken
  Generate a report with charts and statistics about cracked passwords in XLSX format
  ☆33Updated 6 months ago
• TNCX-byte / PS_SSE_Shell
  A stealthy reverse shell built with native PowerShell and Server-Sent Events (SSE). No polling. No sockets. Just pure HTTP and real-time …
  ☆20Updated 4 months ago