DenisPodgurskii / pentestkit

Related projects ⓘ

Alternatives and complementary repositories for pentestkit

• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆265Updated 5 months ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆194Updated 2 weeks ago
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆231Updated this week
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆190Updated 2 years ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆298Updated last year
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆355Updated 3 weeks ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆120Updated 3 weeks ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆184Updated 3 years ago
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆165Updated 3 weeks ago
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆185Updated 4 months ago
• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆260Updated 4 years ago
• agrawalsmart7 / scodescanner
  SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
  ☆159Updated last year
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆162Updated 5 years ago
• win3zz / CVE-2023-25157
  CVE-2023-25157 - GeoServer SQL Injection - PoC
  ☆163Updated last year
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆116Updated 2 years ago
• projectdiscovery / nuclei-docs
  Nuclei documentation
  ☆83Updated last year
• NotSoSecure / SerializedPayloadGenerator
  ☆100Updated 2 years ago
• wzqs / endpoints_explore
  Endpoints Explorer is a Python script that employs multiple bypass rules to discover sensitive endpoints
  ☆83Updated 5 months ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆234Updated 2 years ago
• positive-security / dompdf-rce
  RCE exploit for dompdf
  ☆176Updated 2 years ago
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆186Updated 4 months ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆108Updated last year
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆336Updated this week
• projectdiscovery / nuclei-ai-extension
  Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
  ☆447Updated last year
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆247Updated 5 months ago
• ARPSyndicate / cvemon
  Monitoring exploits & references for CVEs
  ☆229Updated 11 months ago
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆214Updated 2 months ago
• adampielak / nuclei-templates
  All Nuclei Templates
  ☆61Updated 3 weeks ago
• sharathkramadas / k8s-nuclei-templates
  Nuclei templates for K8S security scanning
  ☆102Updated 2 years ago
• hackvertor / hackvertor
  ☆170Updated last week