Alternatives and similar repositories for vulnerabilities

Users that are interested in vulnerabilities are comparing it to the libraries listed below

• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆73Updated 2 years ago
• MrTuxracer / advisories
  Security Advisories
  ☆34Updated 2 months ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆51Updated 3 years ago
• dwisiswant0 / ngocok
  ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.
  ☆115Updated last year
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆50Updated 2 years ago
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆75Updated last year
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆153Updated last month
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆94Updated last month
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆247Updated 3 weeks ago
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆115Updated 2 years ago
• pentesterland / Log4Shell
  ☆72Updated 3 years ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆76Updated 3 years ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆66Updated last year
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆47Updated 4 years ago
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆39Updated last week
• projectdiscovery / wallpapers
  Collection of ProjectDiscovery wallpapers
  ☆31Updated last year
• defparam / haptyc
  ☆95Updated 4 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆32Updated 3 years ago
• effortlessdevsec / ninjasworkout
  Vulnerable NodeJS Web Application
  ☆97Updated last year
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆31Updated 2 years ago
• trickest / cloud
  Monitoring the Cloud Landscape
  ☆87Updated this week
• JavanXD / Raceocat
  Make exploiting race conditions in web applications highly efficient and ease-of-use.
  ☆25Updated 3 months ago
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆157Updated 3 years ago
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆58Updated 4 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆44Updated last year
• tarunKoyalwar / talosplus
  Talosplus is a fast and robust template based Intelligent automation framework primarily developed for Bug Bounty Automation
  ☆89Updated 2 years ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆133Updated 2 years ago
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆33Updated 3 years ago
• trufflesecurity / of-CORS
  ☆152Updated 2 years ago
• mobb-dev / bugsy
  ☆59Updated this week