Alternatives and similar repositories for pentestkit:

Users that are interested in pentestkit are comparing it to the libraries listed below

• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆359Updated 3 months ago
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆187Updated 7 months ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆198Updated last month
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆267Updated 2 weeks ago
• positive-security / dompdf-rce
  RCE exploit for dompdf
  ☆178Updated 2 years ago
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆189Updated 2 years ago
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆170Updated 3 months ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆164Updated 5 years ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆304Updated last year
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆235Updated this week
• NotSoSecure / SerializedPayloadGenerator
  ☆111Updated 2 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆184Updated 3 years ago
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆198Updated last week
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆231Updated 2 months ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆126Updated 2 months ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆565Updated 4 years ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆212Updated this week
• agrawalsmart7 / scodescanner
  SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
  ☆160Updated last year
• projectdiscovery / nuclei-ai-extension
  Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
  ☆476Updated last month
• PortSwigger / logger-plus-plus
  Burp Suite Logger++: Log activities of all the tools in Burp Suite
  ☆169Updated 7 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆251Updated 8 months ago
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆348Updated this week
• PortSwigger / auth-analyzer
  ☆76Updated 8 months ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆202Updated 7 months ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆233Updated 2 years ago
• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆261Updated 4 years ago
• ivan-sincek / forbidden
  Bypass 4xx HTTP response status codes and more. Based on PycURL and Python Requests.
  ☆233Updated this week
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆116Updated 2 years ago
• d3mondev / burp-vps-proxy
  This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
  ☆240Updated last year
• ARPSyndicate / cvemon
  Monitoring exploits & references for CVEs
  ☆229Updated last year