Alternatives and similar repositories for owasp-cstg

Users that are interested in owasp-cstg are comparing it to the libraries listed below

• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆53Updated 4 years ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆37Updated 5 years ago
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆95Updated 5 years ago
• FortyNorthSecurity / Presentations
  Any presentation we've given at FortyNorth Security
  ☆34Updated 3 years ago
• hexrom / Oracle-Pentesting-Reference
  Oracle Database Penetration Testing Reference (10g/11g)
  ☆36Updated 6 years ago
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆58Updated 5 years ago
• AonCyberLabs / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆23Updated 5 years ago
• ministryofjustice / serpico-templates
  Report and finding templates used by the Serpico reporting tool
  ☆16Updated 6 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆88Updated 4 months ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• chryzsh / JenkinsPasswordSpray
  A tool to password spray Jenkins instances
  ☆56Updated 5 years ago
• mohitkhemchandani / OSCE_BIBLE
  A collection of OSCE preparation resources.
  ☆24Updated 5 years ago
• antonytuff / Red-Team-Notes
  OSCP guide and Red Team assessment Guide
  ☆35Updated 4 years ago
• HuskyHacks / O-Course
  A simple web application vulnerability lab made for the HackerOne Veterans day event
  ☆18Updated 4 years ago
• nccgroup / cowcloud
  ☆57Updated last year
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• pownjs / leaks
  Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.
  ☆28Updated 2 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• VDA-Labs / websocket-harness
  Use normal web pentest tools to hack Websockets
  ☆18Updated 5 years ago
• Ebryx / S3Rec0n
  A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…
  ☆39Updated 3 years ago
• 3xpl01tc0d3r / Building-ActiveDirectory-Lab
  Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.
  ☆36Updated 5 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• andresriancho / vpc-vpn-pivot
  Pivot into private VPC networks using a VPN connection
  ☆42Updated 5 years ago
• lazaars / SAP-Pentest
  ☆67Updated 6 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆50Updated last year
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆76Updated 4 years ago
• HSIS007 / Red-Team-And-Adversary-Tactics
  Purpose of this repository is to help all the beginner and experienced professionals to understand,learn and share new tricks for the com…
  ☆31Updated 7 years ago
• BojackThePillager / Slackhound
  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…
  ☆81Updated last year
• ztgrace / mole
  Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.
  ☆57Updated 4 years ago
• xFreed0m / Disruption
  Terraform script to deploy AD-based environment on Azure
  ☆41Updated 2 years ago