Alternatives and similar repositories for vulnerabilities

Users that are interested in vulnerabilities are comparing it to the libraries listed below

• projectdiscovery / php-app-race-condition
  Vulnerable demo application for the race condition
  ☆21Updated 4 years ago
• MrTuxracer / advisories
  Security Advisories
  ☆34Updated last week
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆72Updated 2 years ago
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆74Updated last year
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆48Updated 2 years ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆55Updated last year
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated last year
• mobb-dev / bugsy
  ☆54Updated last week
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆95Updated last year
• PentestPad / larascan
  Laravel PHP framework black-box vulnerability scanner
  ☆23Updated 10 months ago
• GoSecure / request-smuggling-workshop
  ☆26Updated 2 years ago
• Zigrin-Security / CakeFuzzer
  Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …
  ☆99Updated last week
• dwisiswant0 / ngocok
  ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.
  ☆116Updated last year
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆31Updated 3 years ago
• blackbird-eu / community-scripts
  A set of open-source community scripts
  ☆62Updated 9 months ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆50Updated 2 years ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆131Updated 2 years ago
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆93Updated this week
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆114Updated 2 years ago
• trickest / enumerepo
  List all public repositories for (valid) GitHub usernames
  ☆74Updated last year
• Xh4H / Loki
  The Dependency Confusion vulnerability scanner and autoexploitation tool to help identifying and mitigating supply chain attacks
  ☆35Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• defparam / haptyc
  ☆94Updated 3 years ago
• garlic0x1 / go-reflect
  A crawler that tests HTML forms for reflection
  ☆48Updated 3 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago
• righettod / website-passive-reconnaissance
  Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.
  ☆37Updated last month
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• trickest / safe-harbour
  security.txt collection of most popular world-wide domains
  ☆54Updated last year
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆60Updated 2 years ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆44Updated last year