Alternatives and similar repositories for Pentest

Users that are interested in Pentest are comparing it to the libraries listed below

• agrawalsmart7 / otphacks
  ☆20Updated 5 years ago
• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 6 years ago
• mdsecactivebreach / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆14Updated 7 years ago
• mubix / lmo
  LetMeOutOfYour.net Resources
  ☆20Updated 4 years ago
• deletehead / the_hax
  Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!
  ☆26Updated last year
• twelvesec / JDSer-DComp
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Updated 6 years ago
• HuskyHacks / RustyTokenManipulation
  just manipulatin these here tokens yes sir nothing weird
  ☆22Updated 3 years ago
• nccgroup / encoderama
  String or worldlist encoder for use in fuzzing or web application testing
  ☆19Updated 5 years ago
• jfmaes / Parsers
  parsers to make life easier
  ☆13Updated 4 years ago
• vay3t / scan-htb
  automatic scan for hackthebox
  ☆13Updated 5 years ago
• outflanknl / Exploits
  Exploits developped by Outflank B.V. team members
  ☆20Updated 8 years ago
• cybercdh / vpaths
  Take a list of URIs and print all the of the paths
  ☆10Updated 4 years ago
• cheshireca7 / smbAutoRelay
  SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…
  ☆47Updated 4 years ago
• MohitDabas / sastgriper
  A simple grep user interface for searching code which can be used for SAST.
  ☆8Updated 5 years ago
• dozernz / bugstropics
  Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk
  ☆9Updated 2 years ago
• icryo / RFCpwn
  An enumeration and exploitation toolkit using RFC calls to SAP
  ☆38Updated 5 years ago
• riyazwalikar / injection-attacks-nosql-talk
  Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
  ☆22Updated 6 years ago
• laconicwolf / cors-scanner
  A multi-threaded scanner that helps identify CORS flaws/misconfigurations
  ☆19Updated 5 years ago
• s0lst1c3 / awae
  ☆16Updated 7 years ago
• onsecurity / evilginx2
  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …
  ☆13Updated last year
• RedLectroid / KingCrown
  Automated tool for setting up KingPhisher
  ☆9Updated 4 years ago
• VirtueSecurity / benigncertain-monitor
  ☆20Updated 5 years ago
• akiraaisha / Privilege-Escalation
  This contains common OSCP local exploits and enumeration scripts
  ☆11Updated 9 years ago
• r00tpgp / http-pulse_ssl_vpn.nse
  Nmap NSE script to detect Pulse Secure SSL VPN file disclosure CVE-2019-11510
  ☆18Updated 5 years ago
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆26Updated last year
• SolomonSklash / sri-check
  A Burp Suite extension for identifying missing Subresource Integrity attributes.
  ☆13Updated 5 years ago
• n006guy / Pentest-Active-Directory
  Noob Penetration tester
  ☆11Updated last year
• pry0cc / pscan
  A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.
  ☆16Updated 4 years ago
• DimopoulosElias / SEPM-EoP
  CVE-2018-18368 SEP Manager EoP Exploit
  ☆17Updated 5 years ago
• ryhanson / checkpot
  A tool for checking a hash:pass pot file for hashes from a user:hash file
  ☆12Updated 8 years ago