Alternatives and similar repositories for pentestkit

Users that are interested in pentestkit are comparing it to the libraries listed below

• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆220Updated this week
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆250Updated 6 months ago
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆371Updated 2 months ago
• PortSwigger / logger-plus-plus
  Burp Suite Logger++: Log activities of all the tools in Burp Suite
  ☆174Updated 11 months ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆273Updated 4 months ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆304Updated last year
• projectdiscovery / nuclei-ai-extension
  Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
  ☆515Updated 5 months ago
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆191Updated 2 years ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆134Updated 3 months ago
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆201Updated 11 months ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆172Updated 5 years ago
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆240Updated 2 months ago
• hackvertor / hackvertor
  ☆202Updated last month
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆206Updated last month
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆351Updated 3 years ago
• PortSwigger / auth-analyzer
  ☆80Updated last year
• brinhosa / apidetector
  APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …
  ☆315Updated 2 months ago
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆173Updated 7 months ago
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆241Updated this week
• PortSwigger / burp-extensions-montoya-api
  Burp Extensions Api
  ☆169Updated this week
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆255Updated last year
• projectdiscovery / nuclei-action
  Vulnerability Scan with Nuclei
  ☆254Updated 6 months ago
• win3zz / CVE-2023-25157
  CVE-2023-25157 - GeoServer SQL Injection - PoC
  ☆168Updated last year
• ivan-sincek / forbidden
  Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.
  ☆243Updated 2 months ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆224Updated 2 weeks ago
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆384Updated this week
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆507Updated last year
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆222Updated 11 months ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆749Updated 4 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆183Updated 4 years ago