Alternatives and similar repositories for vulnerabilities

Users that are interested in vulnerabilities are comparing it to the libraries listed below

• pentesterland / Log4Shell
  ☆73Updated 3 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆73Updated 2 years ago
• MrTuxracer / advisories
  Security Advisories
  ☆34Updated last week
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆94Updated 2 weeks ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆52Updated 3 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆32Updated 3 years ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆66Updated last year
• dwisiswant0 / ngocok
  ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.
  ☆114Updated last year
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆44Updated last year
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆42Updated this week
• GoSecure / request-smuggling-workshop
  ☆27Updated 2 years ago
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆117Updated 2 years ago
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆154Updated 3 months ago
• projectdiscovery / php-app-race-condition
  Vulnerable demo application for the race condition
  ☆21Updated 4 years ago
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆48Updated 2 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆33Updated 3 years ago
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆61Updated 2 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆51Updated 3 years ago
• JavanXD / Raceocat
  Make exploiting race conditions in web applications highly efficient and ease-of-use.
  ☆25Updated 4 months ago
• defparam / haptyc
  ☆95Updated 4 years ago
• trickest / enumerepo
  List all public repositories for (valid) GitHub usernames
  ☆76Updated 2 years ago
• mobb-dev / bugsy
  ☆60Updated this week
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆75Updated last year
• righettod / website-passive-reconnaissance
  Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.
  ☆38Updated 2 weeks ago
• PentestPad / larascan
  Laravel PHP framework black-box vulnerability scanner
  ☆28Updated last year
• gerosecurity / gerobug
  The First Open Source Bug Bounty Platform
  ☆91Updated this week
• trickest / cloud
  Monitoring the Cloud Landscape
  ☆88Updated this week
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆62Updated 4 years ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆289Updated 2 months ago