Alternatives and similar repositories for hackthebox-writeups:

Users that are interested in hackthebox-writeups are comparing it to the libraries listed below

• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• twelvesec / JDSer-DComp
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Updated 6 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆23Updated 8 years ago
• r00tpgp / http-pulse_ssl_vpn.nse
  Nmap NSE script to detect Pulse Secure SSL VPN file disclosure CVE-2019-11510
  ☆18Updated 5 years ago
• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 6 years ago
• agrawalsmart7 / otphacks
  ☆20Updated 5 years ago
• cosmoscrew / ssrf-playground
  A playground to practice SSRF Attacks against web apps
  ☆17Updated 6 years ago
• laconicwolf / cors-scanner
  A multi-threaded scanner that helps identify CORS flaws/misconfigurations
  ☆19Updated 5 years ago
• hackerscrolls / simplesmtp
  Just a simple SMTP server, implementation of @corpix smtpd library
  ☆14Updated 4 years ago
• pry0cc / pscan
  A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.
  ☆16Updated 4 years ago
• vay3t / scan-htb
  automatic scan for hackthebox
  ☆13Updated 5 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• n4xh4ck5 / V1D0m
  Enumerate subdomains through Virustotal
  ☆32Updated 5 years ago
• raise-isayan / BigIPDiscover
  It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…
  ☆15Updated 10 months ago
• PortSwigger / psycho-path
  psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
  ☆19Updated 6 years ago
• beerpwn / CVE
  CVE, reports, research
  ☆17Updated 4 years ago
• nccgroup / encoderama
  String or worldlist encoder for use in fuzzing or web application testing
  ☆18Updated 5 years ago
• mubix / lmo
  LetMeOutOfYour.net Resources
  ☆20Updated 4 years ago
• cnotin / burp-scan-manual-insertion-point
  Burp Suite Pro extension
  ☆10Updated 7 years ago
• giovanifss / Gitmails-sh
  An information gathering tool to collect git emails in version control host services
  ☆11Updated 5 years ago
• TROUBLE-1 / Hacking-Sunday
  Updated 4 years ago
• ni8walk3r / JWT-Exploitation
  Collection of different exploitation scenarios of JWT.
  ☆21Updated 3 years ago
• cornerpirate / iRecon
  Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.
  ☆11Updated 3 years ago
• tmendo / BurpIntruderFilePayloadGenerator
  Burp Intruder File Payload Generator
  ☆18Updated 5 years ago
• koutto / jok3r-pocs
  Standalone POCs/Exploits from various sources for Jok3r
  ☆28Updated 3 years ago
• hahwul / can-i-protect-xss
  Everything about xss protection technology
  ☆15Updated 5 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• mgeeky / burpContextAwareFuzzer
  BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…
  ☆39Updated 4 years ago
• eur0pa / tko-subs
  A tool that can help detect and takeover subdomains with dead DNS records
  ☆12Updated 6 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago