Alternatives and similar repositories for Pentest

Users that are interested in Pentest are comparing it to the libraries listed below

• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 6 years ago
• cybercdh / vpaths
  Take a list of URIs and print all the of the paths
  ☆10Updated 4 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• r00tpgp / http-pulse_ssl_vpn.nse
  Nmap NSE script to detect Pulse Secure SSL VPN file disclosure CVE-2019-11510
  ☆18Updated 5 years ago
• dozernz / bugstropics
  Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk
  ☆9Updated 2 years ago
• twelvesec / JDSer-DComp
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Updated 6 years ago
• agrawalsmart7 / otphacks
  ☆20Updated 5 years ago
• icryo / RFCpwn
  An enumeration and exploitation toolkit using RFC calls to SAP
  ☆38Updated 5 years ago
• onsecurity / evilginx2
  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …
  ☆13Updated last year
• nccgroup / encoderama
  String or worldlist encoder for use in fuzzing or web application testing
  ☆19Updated 5 years ago
• tasooshi / exfilkit
  Data exfiltration utility for testing detection capabilities
  ☆57Updated 3 years ago
• riyazwalikar / injection-attacks-nosql-talk
  Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
  ☆22Updated 6 years ago
• laconicwolf / cors-scanner
  A multi-threaded scanner that helps identify CORS flaws/misconfigurations
  ☆19Updated 5 years ago
• vavkamil / BBClip
  Bug Bounty Clipboard
  ☆17Updated 5 years ago
• TactiFail / Metasploit-Plugins
  A collection of Metasploit plugins I have written for various reasons.
  ☆15Updated 4 years ago
• danielwolfman / Invoke-WordThief
  This script runs multithreading module that connects to a remote TCP server, monitors active (opened) Microsoft Word documents (.doc,.doc…
  ☆33Updated 4 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• cosmoscrew / ssrf-playground
  A playground to practice SSRF Attacks against web apps
  ☆17Updated 6 years ago
• jeffjbowie / Savage
  Post-exploitation tool
  ☆26Updated 4 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• ethicalhackingplayground / crlfmap
  CRLFMap is a tool to find HTTP Splitting vulnerabilities
  ☆25Updated 4 years ago
• pry0cc / pscan
  A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.
  ☆16Updated 5 years ago
• mubix / lmo
  LetMeOutOfYour.net Resources
  ☆20Updated 4 years ago
• MohitDabas / sastgriper
  A simple grep user interface for searching code which can be used for SAST.
  ☆8Updated 5 years ago
• cheshireca7 / smbAutoRelay
  SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…
  ☆47Updated 4 years ago
• Leoid / Python2Intruder
  Pythonize Intruder Payload
  ☆13Updated 4 years ago
• AdrianCitu / burp-tabnabbing-extension
  Burp Suite Professional extension in Java for Tabnabbing attack
  ☆13Updated 7 years ago
• vp777 / metahttp
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆38Updated 4 years ago
• jivoi / bovrflow
  buffer overflow examples
  ☆22Updated 7 years ago
• Blazz3 / cve2018-13379-nmap-script
  CVE-2018-13379 Script for Nmap NSE.
  ☆12Updated 4 years ago