Alternatives and similar repositories for pentest-mapper

Users that are interested in pentest-mapper are comparing it to the libraries listed below

• PortSwigger / auth-analyzer
  ☆110Updated last year
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆120Updated 2 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 4 years ago
• securebinary / firebaseExploiter
  FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…
  ☆175Updated 3 years ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆190Updated 3 years ago
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆160Updated 4 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆230Updated last year
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆203Updated 3 weeks ago
• emadshanab / Nmap-NSE-scripts-collection
  ☆175Updated 3 months ago
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆121Updated 3 years ago
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆246Updated 3 years ago
• EasyRecon / Hunt3r
  Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework
  ☆169Updated 3 years ago
• d3mondev / burp-vps-proxy
  This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
  ☆246Updated 10 months ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆85Updated last month
• ethicalhackingplayground / TProxer
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆185Updated 4 years ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆81Updated 2 years ago
• zapstiko / wordlists
  All Type of Payloads
  ☆141Updated last year
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆76Updated 2 weeks ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆54Updated 4 years ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆112Updated 3 years ago
• emadshanab / Red-Team-Resources-collection
  ☆76Updated 4 years ago
• h33tlit / Nuclei-and-Subfinder-API
  Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …
  ☆61Updated 3 years ago
• moeinfatehi / Admin-Panel_Finder
  A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
  ☆122Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆136Updated 4 years ago
• seanmarpo / webjars-swagger-xss
  PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]
  ☆51Updated 2 years ago
• trickest / mksub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆273Updated 2 years ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆175Updated last year
• kh4sh3i / Apache-Tomcat-Pentesting
  Apache Tomcat exploit and Pentesting guide for penetration tester
  ☆66Updated 3 years ago