Alternatives and similar repositories for owasp-cstg:

Users that are interested in owasp-cstg are comparing it to the libraries listed below

• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆53Updated 4 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆37Updated 7 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆51Updated 3 years ago
• pownjs / leaks
  Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.
  ☆28Updated 2 years ago
• hexrom / Oracle-Pentesting-Reference
  Oracle Database Penetration Testing Reference (10g/11g)
  ☆36Updated 6 years ago
• 10goto20 / seltzer
  A Burp Suite extension for headless, unattended scanning.
  ☆36Updated 4 years ago
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆57Updated 5 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆35Updated 5 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• VDA-Labs / websocket-harness
  Use normal web pentest tools to hack Websockets
  ☆18Updated 5 years ago
• AonCyberLabs / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆23Updated 5 years ago
• nccgroup / cowcloud
  ☆58Updated last year
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆53Updated 2 years ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆37Updated 5 years ago
• FortyNorthSecurity / Presentations
  Any presentation we've given at FortyNorth Security
  ☆34Updated 3 years ago
• awsmhacks / AttackingAD
  This repo will contain slides and information from the Attacking Active Directory Hacking Series talks presented at SecKC.
  ☆32Updated 8 months ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• tasooshi / exfilkit
  Data exfiltration utility for testing detection capabilities
  ☆57Updated 3 years ago
• morganc3 / KOAuth
  OAuth 2.0 Dynamic Security Scanner
  ☆32Updated 4 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 4 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆75Updated 4 years ago
• alt3kx / wafparan01d3
  Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
  ☆25Updated 3 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆87Updated 2 months ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• sneakerhax / Posts
  Posts about different topics
  ☆36Updated last year
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆94Updated 5 years ago
• sahadnk72 / jecretz
  Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets
  ☆43Updated 2 years ago
• cinerieus / as3nt
  Another Subdomain ENumeration Tool
  ☆11Updated 2 years ago
• ministryofjustice / serpico-templates
  Report and finding templates used by the Serpico reporting tool
  ☆16Updated 6 years ago
• federicodotta / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆42Updated 4 years ago