Alternatives and similar repositories for vulnerable-apps:

Users that are interested in vulnerable-apps are comparing it to the libraries listed below

• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆254Updated 10 months ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆219Updated 2 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆203Updated last year
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆105Updated 3 years ago
• Plazmaz / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆117Updated 6 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆133Updated last year
• reider-roque / linpostexp
  Linux post exploitation enumeration and exploit checking tools
  ☆179Updated 5 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆286Updated 3 months ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆125Updated 8 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆257Updated 3 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆289Updated 2 years ago
• VirtueSecurity / aws-extender
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆249Updated 3 years ago
• s1kr10s / Apache-Struts-v4
  ☆206Updated 4 years ago
• nccgroup / shocker
  A tool to find and exploit servers vulnerable to Shellshock
  ☆333Updated 2 years ago
• bitvijays / Pentest-Scripts
  Github for the scripts utilised during Penetration test
  ☆235Updated 7 years ago
• 003random / 003Recon
  Some tools to automate recon - 003random
  ☆294Updated 6 years ago
• OsandaMalith / LFiFreak
  A unique automated LFi Exploiter with Bind/Reverse Shells
  ☆279Updated 9 years ago
• NetSPI / JavaSerialKiller
  Burp extension to perform Java Deserialization Attacks
  ☆211Updated last year
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆214Updated 6 months ago
• bugbountyforum / XSS-Radar
  ☆326Updated 7 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆149Updated 6 years ago
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆306Updated 6 years ago
• cheetz / THP-ChatSupportSystem
  The Hacker Playbook 3 - Web Commands
  ☆83Updated 6 years ago
• am0nsec / exploit
  Collection of different exploits
  ☆182Updated 4 years ago
• j0bin / Pentest-Resources
  ☆121Updated 8 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆330Updated last year
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆131Updated 4 years ago
• ankh2054 / windows-pentest
  Windows Pentest Scripts
  ☆230Updated 7 years ago