Alternatives and similar repositories for vulnerable-apps

Users that are interested in vulnerable-apps are comparing it to the libraries listed below

• s1kr10s / Apache-Struts-v4
  ☆208Updated 4 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆259Updated 8 months ago
• VirtueSecurity / aws-extender
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆256Updated 3 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆206Updated last year
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆128Updated 8 years ago
• NetSPI / JavaSerialKiller
  Burp extension to perform Java Deserialization Attacks
  ☆216Updated last year
• frizb / Bypassing-Web-Application-Firewalls
  A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
  ☆279Updated 7 years ago
• belane / linux-soft-exploit-suggester
  Search Exploitable Software on Linux
  ☆234Updated 2 years ago
• reider-roque / linpostexp
  Linux post exploitation enumeration and exploit checking tools
  ☆182Updated 5 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆108Updated 3 years ago
• nccgroup / shocker
  A tool to find and exploit servers vulnerable to Shellshock
  ☆328Updated 2 years ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆240Updated 6 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆391Updated 3 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆110Updated 6 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆297Updated 2 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆293Updated last year
• danigargu / explodingcan
  An implementation of NSA's ExplodingCan exploit in Python
  ☆269Updated 8 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆167Updated 6 years ago
• cyberheartmi9 / CVE-2017-12617
  Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
  ☆394Updated 8 years ago
• cheetz / THP-ChatSupportSystem
  The Hacker Playbook 3 - Web Commands
  ☆85Updated 7 years ago
• mazen160 / struts-pwn_CVE-2018-11776
  An exploit for Apache Struts CVE-2018-11776
  ☆303Updated 7 years ago
• incredibleindishell / CORS-vulnerable-Lab
  Sample vulnerable code and its exploit code
  ☆190Updated 4 years ago
• ajinabraham / Node.Js-Security-Course
  Contents for Node.Js Security Course
  ☆343Updated 5 years ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆282Updated 5 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆152Updated 7 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆425Updated 5 years ago
• devsecboy / DomainRecon
  Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…
  ☆159Updated last year
• mpgn / poodle-PoC
  Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566
  ☆264Updated 2 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 8 years ago
• joxeankoret / CVE-2017-7494
  Remote root exploit for the SAMBA CVE-2017-7494 vulnerability
  ☆260Updated 4 years ago