Alternatives and similar repositories for pentestkit

Users that are interested in pentestkit are comparing it to the libraries listed below

• brinhosa / apidetector
  APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …
  ☆355Updated 9 months ago
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆389Updated 3 weeks ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆236Updated this week
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆312Updated 2 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆265Updated last year
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆189Updated 3 years ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆277Updated 11 months ago
• win3zz / CVE-2023-25157
  CVE-2023-25157 - GeoServer SQL Injection - PoC
  ☆171Updated 2 years ago
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆244Updated 6 months ago
• projectdiscovery / nuclei-ai-extension
  Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
  ☆542Updated last year
• Anof-cyber / PyCript
  Burp Suite extension to decrypt/encrypt any encrypted traffic (AES/RSA/Encodings and more) with custom code in any language
  ☆217Updated 3 weeks ago
• PortSwigger / logger-plus-plus
  Burp Suite Logger++: Log activities of all the tools in Burp Suite
  ☆184Updated last year
• PortSwigger / auth-analyzer
  ☆109Updated last year
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆255Updated last week
• hackvertor / hackvertor
  ☆231Updated 2 weeks ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆239Updated 2 weeks ago
• AbstractEngine / pentest-muse-cli
  ☆237Updated last year
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆421Updated this week
• ivan-sincek / forbidden
  Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.
  ☆252Updated 3 months ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆177Updated 2 years ago
• positive-security / dompdf-rce
  RCE exploit for dompdf
  ☆180Updated 3 years ago
• Acorzo1983 / SQLMapCG
  SQLMap Command Generator: A web-based tool to easily generate customizable SQLMap commands for testing SQL injection vulnerabilities. Fea…
  ☆76Updated last year
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆118Updated 3 years ago
• mdsecresearch / BurpSuiteSharpener
  ☆522Updated 2 years ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆310Updated last year
• 0xKayala / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆157Updated 9 months ago
• Sharpforce / XSS-Exploitation-Tool
  An XSS Exploitation Tool
  ☆334Updated 3 weeks ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆136Updated 2 weeks ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
  ☆802Updated 4 months ago
• NotSoSecure / SerializedPayloadGenerator
  ☆136Updated 3 months ago