Alternatives and similar repositories for challenges

Users that are interested in challenges are comparing it to the libraries listed below

• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 7 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• dreadlocked / ctf-writeups
  CTF Write-ups
  ☆26Updated 6 years ago
• jobertabma / h1-212-ctf-files
  ☆7Updated 7 years ago
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆30Updated 7 years ago
• tothi / ctfs
  some example ctf writeups
  ☆27Updated 4 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 7 years ago
• tijme / similar-request-excluder
  A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.
  ☆43Updated 5 years ago
• ZephrFish / Blog_Backup
  A repository with various tutorials on how to do things in Pentesting, setup environments and other things
  ☆20Updated last month
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago
• SeanHeelan / funserialize
  Scripts and auxiliary files for fuzzing PHP's unserialize function
  ☆44Updated 7 years ago
• zi0Black / POC-CVE-2018-0114
  This repository contains the POC of an exploit for node-jose < 0.11.0
  ☆25Updated 2 years ago
• mazen160 / public
  ☆35Updated 4 months ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 6 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• omarkurt / cve-2014-0130
  cve-2014-0130 rails directory traversal vuln
  ☆19Updated 8 years ago
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 8 years ago
• oways / SA-CORE-2018-004
  SA-CORE-2018-004 POC #drupalgeddon3
  ☆42Updated 7 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• Techlord-RCE / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆45Updated 6 years ago
• yolosec / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆34Updated 8 years ago
• bayotop / sink-logger
  Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.
  ☆49Updated 2 years ago
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆48Updated 4 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 7 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 10 years ago
• ZephrFish / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆25Updated 8 years ago
• karelorigin / XSS-Problems
  ☆34Updated 5 years ago
• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆45Updated 7 years ago
• destine21 / ZIPFileRaider
  ZIP File Raider - Burp Extension for ZIP File Payload Testing
  ☆71Updated 4 years ago
• raccoons-team / ctf
  Writeups for CTF competitions.
  ☆33Updated 9 years ago