Alternatives and similar repositories for Pentest

Users that are interested in Pentest are comparing it to the libraries listed below

• cybercdh / vpaths
  Take a list of URIs and print all the of the paths
  ☆10Updated 5 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 6 years ago
• twelvesec / JDSer-DComp
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Updated 6 years ago
• icryo / RFCpwn
  An enumeration and exploitation toolkit using RFC calls to SAP
  ☆39Updated 5 years ago
• cosmoscrew / ssrf-playground
  A playground to practice SSRF Attacks against web apps
  ☆17Updated 7 years ago
• mubix / lmo
  LetMeOutOfYour.net Resources
  ☆20Updated 5 years ago
• onsecurity / evilginx2
  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …
  ☆13Updated last year
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Updated 7 years ago
• nccgroup / encoderama
  String or worldlist encoder for use in fuzzing or web application testing
  ☆19Updated 6 years ago
• Leoid / Python2Intruder
  Pythonize Intruder Payload
  ☆13Updated 4 years ago
• MantisSTS / OpenXML-XXE-Generator
  A tool to generate OpenXML XXE Payloads written in Python3.
  ☆16Updated 6 years ago
• laconicwolf / cors-scanner
  A multi-threaded scanner that helps identify CORS flaws/misconfigurations
  ☆19Updated 5 years ago
• danielwolfman / Invoke-WordThief
  This script runs multithreading module that connects to a remote TCP server, monitors active (opened) Microsoft Word documents (.doc,.doc…
  ☆33Updated 5 years ago
• vavkamil / BBClip
  Bug Bounty Clipboard
  ☆17Updated 5 years ago
• dozernz / bugstropics
  Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk
  ☆10Updated 3 years ago
• secxena / credcheck
  Credentials Checking Framework
  ☆54Updated 2 years ago
• Leoid / Encoder
  Alphanumeric Encoder
  ☆25Updated 7 years ago
• ethicalhack3r / my-scripts
  Code snippets I find useful
  ☆31Updated 8 years ago
• vay3t / scan-htb
  automatic scan for hackthebox
  ☆13Updated 5 years ago
• ztgrace / mole
  Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.
  ☆58Updated 5 years ago
• deletehead / the_hax
  Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!
  ☆26Updated 2 years ago
• cheshireca7 / smbAutoRelay
  SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…
  ☆47Updated 4 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• vp777 / metahttp
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆38Updated 4 years ago
• s0lst1c3 / awae
  ☆16Updated 8 years ago
• jpiechowka / zip-shotgun
  Utility script to test zip file upload functionality (and possible extraction of zip files) for vulnerabilities (aka Zip Slip)
  ☆32Updated 6 years ago
• mohitkhemchandani / OSCE_BIBLE
  A collection of OSCE preparation resources.
  ☆24Updated 5 years ago
• SolomonSklash / sri-check
  A Burp Suite extension for identifying missing Subresource Integrity attributes.
  ☆13Updated 6 years ago
• r00tpgp / http-pulse_ssl_vpn.nse
  Nmap NSE script to detect Pulse Secure SSL VPN file disclosure CVE-2019-11510
  ☆18Updated 6 years ago