Alternatives and similar repositories for pentestkit

Users that are interested in pentestkit are comparing it to the libraries listed below

• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆231Updated last week
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆382Updated 2 weeks ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆275Updated 8 months ago
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆191Updated 2 years ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆304Updated 2 years ago
• projectdiscovery / nuclei-ai-extension
  Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
  ☆535Updated 9 months ago
• PortSwigger / logger-plus-plus
  Burp Suite Logger++: Log activities of all the tools in Burp Suite
  ☆180Updated last year
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆260Updated 10 months ago
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆117Updated 3 years ago
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆211Updated last week
• brinhosa / apidetector
  APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …
  ☆340Updated 6 months ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆232Updated 2 months ago
• hackvertor / hackvertor
  ☆218Updated last week
• ivan-sincek / forbidden
  Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.
  ☆246Updated 2 weeks ago
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆243Updated 3 months ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆174Updated last year
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆252Updated last week
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆411Updated last week
• projectdiscovery / nuclei-action
  Vulnerability Scan with Nuclei
  ☆268Updated 2 weeks ago
• AbstractEngine / pentest-muse-cli
  ☆235Updated last year
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆197Updated last month
• mdsecresearch / BurpSuiteSharpener
  ☆524Updated 2 years ago
• PortSwigger / auth-analyzer
  ☆106Updated last year
• projectdiscovery / nuclei-docs
  Nuclei documentation
  ☆84Updated 2 years ago
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆356Updated 3 years ago
• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆269Updated 5 years ago
• gagaltotal / Bypass-WAF-SQLMAP
  Bypass WAF SQL Injection SQLMAP
  ☆193Updated 3 years ago
• positive-security / dompdf-rce
  RCE exploit for dompdf
  ☆182Updated 3 years ago
• win3zz / CVE-2023-25157
  CVE-2023-25157 - GeoServer SQL Injection - PoC
  ☆169Updated 2 years ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆237Updated 3 years ago