Alternatives and similar repositories for vulnerable-apps

Users that are interested in vulnerable-apps are comparing it to the libraries listed below

• s1kr10s / Apache-Struts-v4
  ☆207Updated 4 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆203Updated last year
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆258Updated 2 months ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆105Updated 3 years ago
• NetSPI / JavaSerialKiller
  Burp extension to perform Java Deserialization Attacks
  ☆212Updated last year
• belane / linux-soft-exploit-suggester
  Search Exploitable Software on Linux
  ☆230Updated 2 years ago
• reider-roque / linpostexp
  Linux post exploitation enumeration and exploit checking tools
  ☆180Updated 5 years ago
• frizb / Bypassing-Web-Application-Firewalls
  A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
  ☆279Updated 6 years ago
• VirtueSecurity / aws-extender
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆251Updated 3 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆128Updated 8 years ago
• secvulture / dvta
  Damn Vulnerable Thick Client App
  ☆150Updated 5 years ago
• nccgroup / shocker
  A tool to find and exploit servers vulnerable to Shellshock
  ☆333Updated 2 years ago
• cheetz / THP-ChatSupportSystem
  The Hacker Playbook 3 - Web Commands
  ☆84Updated 7 years ago
• devsecboy / DomainRecon
  Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…
  ☆158Updated last year
• mpgn / poodle-PoC
  Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566
  ☆257Updated last year
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 6 years ago
• mhaskar / RCEScanner
  Simple python script to extract unsafe functions from php projects
  ☆199Updated 7 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆290Updated 2 years ago
• am0nsec / exploit
  Collection of different exploits
  ☆182Updated 4 years ago
• Plazmaz / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆117Updated 6 years ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆219Updated 2 years ago
• reider-roque / pentest-tools
  Penetration testing scripts
  ☆143Updated 7 years ago
• JGillam / burp-co2
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆153Updated last year
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆388Updated 2 years ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆133Updated 4 years ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆232Updated 5 years ago
• random-robbie / Jira-Scan
  CVE-2017-9506 - SSRF
  ☆188Updated 3 years ago
• safebuffer / PE-Linux
  Linux Privilege Escalation Tool
  ☆184Updated 6 years ago
• kacperszurek / exploits
  ☆265Updated 6 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆227Updated last year