Alternatives and similar repositories for vulnerable-apps:

Users that are interested in vulnerable-apps are comparing it to the libraries listed below

• nccgroup / shocker
  A tool to find and exploit servers vulnerable to Shellshock
  ☆333Updated last year
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆202Updated 11 months ago
• VirtueSecurity / aws-extender
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆245Updated 2 years ago
• frizb / Bypassing-Web-Application-Firewalls
  A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
  ☆273Updated 6 years ago
• reider-roque / linpostexp
  Linux post exploitation enumeration and exploit checking tools
  ☆176Updated 4 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆254Updated 6 months ago
• trickster0 / Enyx
  Enyx SNMP IPv6 Enumeration Tool
  ☆102Updated last year
• secvulture / dvta
  Damn Vulnerable Thick Client App
  ☆146Updated 4 years ago
• s1kr10s / Apache-Struts-v4
  ☆206Updated 3 years ago
• reider-roque / pentest-tools
  Penetration testing scripts
  ☆143Updated 6 years ago
• henshin / filebuster
  An extremely fast and flexible web fuzzer
  ☆215Updated last year
• OsandaMalith / LFiFreak
  A unique automated LFi Exploiter with Bind/Reverse Shells
  ☆269Updated 9 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆102Updated 2 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆424Updated 4 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆290Updated last year
• j0bin / Pentest-Resources
  ☆121Updated 7 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆212Updated 3 months ago
• bitvijays / Pentest-Scripts
  Github for the scripts utilised during Penetration test
  ☆236Updated 7 years ago
• cheetz / THP-ChatSupportSystem
  The Hacker Playbook 3 - Web Commands
  ☆84Updated 6 years ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆129Updated 4 years ago
• belane / linux-soft-exploit-suggester
  Search Exploitable Software on Linux
  ☆223Updated last year
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆133Updated last year
• devsecboy / DomainRecon
  Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…
  ☆154Updated 8 months ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆281Updated this week
• phackt / pentest
  Custom tools and projects about security
  ☆111Updated 3 years ago
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆303Updated 6 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆124Updated 7 years ago
• ankh2054 / windows-pentest
  Windows Pentest Scripts
  ☆229Updated 7 years ago