Alternatives and similar repositories for pentesting

Users that are interested in pentesting are comparing it to the libraries listed below

• VikasVarshney / ssti-payload
  SSTI Payload Generator
  ☆90Updated 2 years ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆70Updated 4 years ago
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆106Updated 5 years ago
• Keramas / DS_Walk
  Python tool for enumerating directories and files on web servers that contain a publicly readable .ds_store file.
  ☆59Updated 3 years ago
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆119Updated 2 years ago
• jakabakos / CVE-2023-36664-Ghostscript-command-injection
  Ghostscript command injection vulnerability PoC (CVE-2023-36664)
  ☆124Updated last year
• mohinparamasivam / Sudo-1.8.31-Root-Exploit
  Root shell PoC for CVE-2021-3156
  ☆66Updated 4 years ago
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆84Updated this week
• attackdebris / kerberos_enum_userlists
  Collection of username lists for enumerating kerberos domain users
  ☆91Updated 7 years ago
• nth347 / CVE-2021-3129_exploit
  Exploit for CVE-2021-3129
  ☆65Updated 4 years ago
• expl0itabl3 / Toolies
  Ad hoc collection of Red Teaming & Active Directory tooling.
  ☆201Updated last year
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆175Updated last year
• SaumyajeetDas / CVE-2023-46604-RCE-Reverse-Shell-Apache-ActiveMQ
  Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)
  ☆114Updated last year
• Almorabea / Polkit-exploit
  Privilege escalation with polkit - CVE-2021-3560
  ☆120Updated 3 years ago
• jephk9 / oscp-jewels
  Gitbook: OSCP-Jewels
  ☆12Updated 3 years ago
• ibr0wse / RedTeam-PenTest-Cheatsheet-Checklist
  Red Teaming and Penetration Testing Checklist, Cheatsheet, Clickscript
  ☆86Updated last year
• dashagriiva / OSCP-Prep-1
  A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam
  ☆44Updated 6 years ago
• Sait-Nuri / CVE-2018-15473
  OpenSSH 2.3 < 7.7 - Username Enumeration
  ☆42Updated last year
• horizon3ai / proxyshell
  Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207
  ☆112Updated last year
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆108Updated last year
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆143Updated last year
• miko550 / CVE-2023-32315
  Openfire Console Authentication Bypass Vulnerability with RCE plugin
  ☆51Updated last year
• dipakpanchal05 / CVE-2022-23808
  phpMyAdmin XSS
  ☆116Updated 6 months ago
• zapstiko / wordlists
  All Type of Payloads
  ☆136Updated last year
• positive-security / dompdf-rce
  RCE exploit for dompdf
  ☆177Updated 3 years ago
• evkl1d / CVE-2023-46604
  ☆32Updated last year
• 0xKayala / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆144Updated 2 months ago
• svdwi / OSWE-Labs-Poc
  Dockerized labs For Web Expert (OSWE) certification. Preparation for coming AWAE Training ...
  ☆105Updated 3 years ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆128Updated 5 years ago
• caday00 / mimikatz2.1.1
  Old version of mimikatz for OSCP labs
  ☆17Updated 4 years ago