Alternatives and similar repositories for playbooks

Users that are interested in playbooks are comparing it to the libraries listed below

• kartikdurg / Terrible-Thick-Client
  "Terrible Thick Client" is a vulnerable application developed in C# .NET framework.
  ☆20Updated 2 years ago
• MrTurvey / Burp2API
  Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.
  ☆70Updated 11 months ago
• tjnull / pentest-arsenal
  A collection of tools that I use in CTF's or for assessments
  ☆102Updated 9 months ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆60Updated 2 years ago
• securelayer7 / not-a-vuln-list
  Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report
  ☆13Updated 9 months ago
• PanosoikoGr / CloudTap
  Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…
  ☆45Updated 4 months ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• carlospolop / Bruteforce-GCP-Permissions
  Use the GCP testIamPermissions functionality to bruteforce and discover your permissions
  ☆41Updated 5 months ago
• aleemladha / SANS-Workshop-Lab
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆33Updated last week
• jumpycastle / rre-burp
  Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025
  ☆102Updated 3 months ago
• wetw0rk / AWE-PREP
  Repository containing all training and tutorials completed in preparation for the OSEE in conjunction with the AWE course.
  ☆116Updated 2 weeks ago
• Tib3rius / Copier
  A Burp extension to help pentesters copy requests / responses for reports.
  ☆50Updated 4 months ago
• TNCX-byte / PS_SSE_Shell
  A stealthy reverse shell built with native PowerShell and Server-Sent Events (SSE). No polling. No sockets. Just pure HTTP and real-time …
  ☆20Updated 6 months ago
• lem0nSec / eCXD
  A collection of exploits and exercises developed while preparing for the eCXD exam!
  ☆32Updated 2 years ago
• Neuvik / BucketHoarder
  ☆54Updated 2 years ago
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆45Updated 3 months ago
• nccgroup / cq
  ☆116Updated 2 years ago
• ms101 / EvilKnievelnoVNC
  Weaponized EvilnoVNC: Scalable and semi-automated MFA-Phishing
  ☆52Updated 8 months ago
• d-sec-net / VPK
  Vast.ai Password Kracking
  ☆89Updated 3 weeks ago
• interruptlabs / VRDP-C-Python
  C and Python training from our Vulnerability Researcher Development Program (VRDP)
  ☆82Updated 3 months ago
• CyberSecurityUP / RTOps-Management-Platform
  ☆74Updated 2 months ago
• GhnimiWael / LDAPHunter
  LDAP Enumeration Tool for Pentesters
  ☆48Updated 7 months ago
• evildaemond / physsec-methodology
  A public, open source physical security methodology
  ☆46Updated last year
• vuusale / ParaMutator
  API fuzzer that exposes security flaws by sending malformed inputs
  ☆16Updated last year
• RakeshKengale / RaKKeN
  Information Security Information From Web
  ☆28Updated 3 months ago
• ApexPredator-InfoSec / AWAE-OSWE
  Review of AWAE.OSWE
  ☆31Updated 3 years ago
• dievus / AWeSomeUserFinder
  AWS IAM Username Enumerator and Password Spraying Tool in Python3
  ☆87Updated 6 months ago
• websecnl / MagicByteSelector
  Burp Suite Extension for inserting a magic byte into responder's request
  ☆24Updated 2 years ago
• Michaeladsl / Patronusx
  ☆54Updated 10 months ago
• CyberSecurityUP / awesome-cybersecurity-MCP
  ☆13Updated 7 months ago