Alternatives and similar repositories for owasp-cstg

Users that are interested in owasp-cstg are comparing it to the libraries listed below

• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆53Updated 5 years ago
• sneakerhax / Posts
  Posts about different topics
  ☆40Updated 4 months ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆37Updated 6 years ago
• Rhynorater / Okta-Password-Sprayer
  This script is a multi-threaded Okta password sprayer.
  ☆71Updated last year
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆94Updated 6 years ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆76Updated 3 years ago
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆58Updated 5 years ago
• mandiant / heyserial
  Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…
  ☆144Updated 2 years ago
• alt3kx / CVE-2021-21972
  ☆54Updated 4 years ago
• alt3kx / wafparan01d3
  Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
  ☆24Updated 4 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 4 years ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆90Updated 11 months ago
• BojackThePillager / Slackhound
  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…
  ☆81Updated 4 months ago
• lazaars / SAP-Pentest
  ☆72Updated 7 years ago
• hexrom / Oracle-Pentesting-Reference
  Oracle Database Penetration Testing Reference (10g/11g)
  ☆39Updated 7 years ago
• Static-Flow / CloudCopy
  This tool implements a cloud version of the Shadow Copy attack against domain controllers running in AWS using only the EC2:CreateSnapsho…
  ☆121Updated 6 years ago
• FortyNorthSecurity / Presentations
  Any presentation we've given at FortyNorth Security
  ☆34Updated 4 years ago
• chryzsh / JenkinsPasswordSpray
  A tool to password spray Jenkins instances
  ☆59Updated 6 years ago
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• HuskyHacks / O-Course
  A simple web application vulnerability lab made for the HackerOne Veterans day event
  ☆18Updated 4 years ago
• antman1p / Jir-Thief
  A Red Team tool for exfiltrating sensitive data from Jira tickets.
  ☆86Updated 2 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆52Updated 2 years ago
• stephenbradshaw / pentesting_stuff
  A place to store my various pentesting related code thats too small/niche to justify its own repository, and a simple website with notes …
  ☆39Updated last week
• pownjs / leaks
  Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.
  ☆28Updated 3 years ago
• hoodoer / WP-XSS-Admin-Funcs
  JavaScript functions intended to be used as an XSS payload against a WordPress admin account.
  ☆57Updated 5 years ago
• moloch-- / burp-multiplayer
  Burp with Friends
  ☆103Updated 2 years ago
• epi052 / OSCE-exam-practice
  Proof of Concept exploit scripts and fuzzing templates. Companion blog posts located at https://epi052.gitlab.io/notes-to-self/blog/2020…
  ☆65Updated 5 years ago
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago