Alternatives and similar repositories for vulnerabilities

Users that are interested in vulnerabilities are comparing it to the libraries listed below

• pentesterland / Log4Shell
  ☆73Updated 4 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆76Updated 2 years ago
• MrTuxracer / advisories
  Security Advisories
  ☆35Updated 3 months ago
• trufflesecurity / of-CORS
  ☆154Updated 2 years ago
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆116Updated 2 years ago
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆95Updated 2 months ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆294Updated 5 months ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆82Updated 3 years ago
• dwisiswant0 / ngocok
  ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.
  ☆114Updated 2 years ago
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆45Updated 3 years ago
• trickest / cloud
  Monitoring the Cloud Landscape
  ☆92Updated last week
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆76Updated last week
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆52Updated 3 years ago
• effortlessdevsec / ninjasworkout
  Vulnerable NodeJS Web Application
  ☆97Updated last year
• Xh4H / Loki
  The Dependency Confusion vulnerability scanner and autoexploitation tool to help identifying and mitigating supply chain attacks
  ☆36Updated last year
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆160Updated 6 months ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆65Updated 5 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆32Updated 3 years ago
• trickest / enumerepo
  List all public repositories for (valid) GitHub usernames
  ☆76Updated 2 years ago
• trickest / safe-harbour
  security.txt collection of most popular world-wide domains
  ☆55Updated 2 years ago
• PentestPad / larascan
  Laravel PHP framework black-box vulnerability scanner
  ☆34Updated last year
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆54Updated 4 years ago
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆48Updated 2 years ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆65Updated 2 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆51Updated 3 years ago
• tarunKoyalwar / talosplus
  Talosplus is a fast and robust template based Intelligent automation framework primarily developed for Bug Bounty Automation
  ☆92Updated 2 years ago
• bughuntar / Vulnerable-Code-Snippets
  Vulnerable Code Snippets
  ☆46Updated 2 years ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆85Updated last month
• sepehrdaddev / zap-scripts
  Zed Attack Proxy Scripts for finding CVEs and Secrets.
  ☆129Updated 3 years ago