Alternatives and similar repositories for pentest-mapper

Users that are interested in pentest-mapper are comparing it to the libraries listed below

• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆120Updated 4 years ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆82Updated last year
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆223Updated last year
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆115Updated last year
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆119Updated 2 years ago
• emadshanab / BChecks-Collection
  BChecks collection for Burp Suite Professional
  ☆98Updated last year
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆182Updated 2 years ago
• Anof-cyber / ParaForge
  A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
  ☆140Updated last year
• PortSwigger / auth-analyzer
  ☆88Updated last year
• 0xElkot / Bug-Bounty-Automation
  ☆113Updated 2 years ago
• tkmru / lazyCSRF
  A more useful CSRF PoC generator on Burp Suite
  ☆86Updated 2 years ago
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆144Updated last year
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 3 weeks ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• seanmarpo / webjars-swagger-xss
  PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]
  ☆53Updated 2 years ago
• Sybil-Scan / imagemagick-lfi-poc
  ImageMagick LFI PoC [CVE-2022-44268]
  ☆52Updated last year
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆157Updated 3 years ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆67Updated last year
• lucsemassa / burp_bug_finder
  Automatic Bug finder with buprsuite
  ☆166Updated 2 years ago
• ethicalhackingplayground / TProxer
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆180Updated 3 years ago
• darklotuskdb / sd-goo
  Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)
  ☆124Updated 2 months ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆111Updated 3 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆52Updated 3 years ago
• zapstiko / wordlists
  All Type of Payloads
  ☆136Updated last year
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆196Updated last week
• ahmad0x1 / ARWAD
  Advanced Reconnaissance and Web Application Discovery
  ☆82Updated 3 years ago
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆137Updated 9 months ago