Alternatives and similar repositories for vulnerable-apps

Users that are interested in vulnerable-apps are comparing it to the libraries listed below

• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆203Updated last year
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆254Updated 10 months ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆135Updated last year
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆219Updated 2 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆125Updated 8 years ago
• s1kr10s / Apache-Struts-v4
  ☆206Updated 4 years ago
• reider-roque / linpostexp
  Linux post exploitation enumeration and exploit checking tools
  ☆180Updated 5 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆258Updated 3 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• henshin / filebuster
  An extremely fast and flexible web fuzzer
  ☆218Updated 2 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆425Updated 5 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• bugbountyforum / XSS-Radar
  ☆326Updated 7 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆105Updated 3 years ago
• OsandaMalith / LFiFreak
  A unique automated LFi Exploiter with Bind/Reverse Shells
  ☆279Updated 9 years ago
• belane / linux-soft-exploit-suggester
  Search Exploitable Software on Linux
  ☆227Updated 2 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆214Updated 7 months ago
• cheetz / THP-ChatSupportSystem
  The Hacker Playbook 3 - Web Commands
  ☆83Updated 7 years ago
• nccgroup / shocker
  A tool to find and exploit servers vulnerable to Shellshock
  ☆333Updated 2 years ago
• frizb / Bypassing-Web-Application-Firewalls
  A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
  ☆276Updated 6 years ago
• ONsec-Lab / scripts
  Utils
  ☆267Updated 9 years ago
• VirtueSecurity / aws-extender
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆249Updated 3 years ago
• reider-roque / pentest-tools
  Penetration testing scripts
  ☆143Updated 7 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆287Updated 4 months ago
• mhaskar / RCEScanner
  Simple python script to extract unsafe functions from php projects
  ☆199Updated 7 years ago
• Plazmaz / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆117Updated 6 years ago
• j0bin / Pentest-Resources
  ☆121Updated 8 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆142Updated 6 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆222Updated 7 months ago