Alternatives and similar repositories for Cloud-Pentesting

Users that are interested in Cloud-Pentesting are comparing it to the libraries listed below

• cyprosecurity / API-SecurityEmpire
  API Security Project aims to present unique attack & defense methods in API Security field
  ☆286Updated 3 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆270Updated 2 years ago
• m6a-UdS / dvca
  Damn Vulnerable Cloud Application
  ☆207Updated 7 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆126Updated 2 years ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆325Updated last year
• emadshanab / Nmap-NSE-scripts-collection
  ☆175Updated 3 months ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆175Updated last year
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• 0xtz / Enum_For_All
  ☆166Updated 5 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆129Updated 3 years ago
• pussycat0x / malicious-pdf
  Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator
  ☆168Updated 4 years ago
• Bandit-HaxUnit / haxunit
  ☆329Updated 6 months ago
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆246Updated 3 years ago
• bb1nfosec / Information-Security-Tasks
  This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can dail…
  ☆176Updated last month
• Vanshal / Bug-Hunting
  The aim of this Reposiotry is to Provide the Resoursces of Learning at one place For Bug Bounty Hunters.
  ☆142Updated 2 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆261Updated 3 years ago
• deletehead / awae_oswe_prep
  Stuff done in preparation for AWAE course and OSWE certification
  ☆154Updated 5 years ago
• The-Login / DNS-Reset-Checker
  Tools to assess the DNS security of web applications
  ☆128Updated 3 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆148Updated 5 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 3 years ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆203Updated 2 weeks ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆246Updated 6 years ago
• PalindromeLabs / awesome-websocket-security
  Awesome information for WebSockets security research
  ☆297Updated 4 years ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆93Updated 2 years ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆187Updated 4 years ago
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆130Updated 5 years ago
• httpvoid / CVE-Reverse
  ☆284Updated 4 years ago