Alternatives and similar repositories for pentesting:

Users that are interested in pentesting are comparing it to the libraries listed below

• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆118Updated 2 years ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆70Updated 3 years ago
• jakabakos / CVE-2023-36664-Ghostscript-command-injection
  Ghostscript command injection vulnerability PoC (CVE-2023-36664)
  ☆115Updated last year
• horizon3ai / proxyshell
  Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207
  ☆110Updated last year
• nth347 / CVE-2021-3129_exploit
  Exploit for CVE-2021-3129
  ☆66Updated 4 years ago
• p0dalirius / CVE-2022-36446-Webmin-Software-Package-Updates-RCE
  A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.
  ☆112Updated last month
• SaumyajeetDas / CVE-2023-46604-RCE-Reverse-Shell-Apache-ActiveMQ
  Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)
  ☆110Updated last year
• dipakpanchal05 / CVE-2022-23808
  phpMyAdmin XSS
  ☆116Updated 4 months ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆106Updated 10 months ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆117Updated last year
• VikasVarshney / ssti-payload
  SSTI Payload Generator
  ☆89Updated 2 years ago
• PenTestical / CVE-2020-9484
  ☆33Updated 2 years ago
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆104Updated 5 years ago
• evkl1d / CVE-2023-46604
  ☆30Updated last year
• MrCl0wnLab / SimplesApachePathTraversal
  Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519
  ☆60Updated 6 months ago
• ShutdownRepo / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆68Updated 6 months ago
• Keramas / DS_Walk
  Python tool for enumerating directories and files on web servers that contain a publicly readable .ds_store file.
  ☆56Updated 3 years ago
• n3rdh4x0r / MS17-010_CVE-2017-0143
  MS17-010_CVE-2017-0143
  ☆36Updated 3 months ago
• zapstiko / wordlists
  All Type of Payloads
  ☆134Updated 11 months ago
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆124Updated 3 years ago
• p0dalirius / Tomcat-webshell-application
  A webshell application and interactive shell for pentesting Apache Tomcat servers.
  ☆102Updated last month
• abdoghazy2015 / ofbiz-CVE-2023-49070-RCE-POC
  ☆58Updated last year
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆74Updated 11 months ago
• Jonoans / Umbraco-RCE
  Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
  ☆16Updated last year
• cosad3s / CVE-2022-35914-poc
  ☆47Updated last year
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆75Updated last year
• attackdebris / kerberos_enum_userlists
  Collection of username lists for enumerating kerberos domain users
  ☆88Updated 7 years ago
• Al1ex / CVE-2021-27928
  CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞
  ☆62Updated last year
• 7Ragnarok7 / Windows-Exploit-Suggester-2
  A tool to recommend available exploits for Windows Operating Systems
  ☆50Updated 3 years ago
• W01fh4cker / CVE-2024-22120-RCE
  Time Based SQL Injection in Zabbix Server Audit Log --> RCE
  ☆116Updated 9 months ago