Alternatives and similar repositories for research

Users that are interested in research are comparing it to the libraries listed below

• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆165Updated 6 years ago
• Hacker0x01 / h1-212-ctf-solutions
  A collection of the solutions people wrote for the H1-212 Capture The Flag event
  ☆97Updated 7 years ago
• henshin / filebuster
  An extremely fast and flexible web fuzzer
  ☆223Updated 2 years ago
• netbiosX / Pentest-Bookmarks
  Database of websites for penetration testing
  ☆180Updated 6 years ago
• EdOverflow / contact.sh
  An OSINT tool to find contacts in order to report security vulnerabilities.
  ☆268Updated 6 years ago
• qazbnm456 / awesome-security-trivia
  🤙 Security Trivia that rare people know.
  ☆162Updated 6 years ago
• EdOverflow / bugbountywiki
  The Bug Bounty Wiki
  ☆171Updated 7 years ago
• danilabs / tools-tbhm
  Tools of "The Bug Hunters Methodology V2 by @jhaddix"
  ☆202Updated 8 years ago
• pownjs / pown
  Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.
  ☆262Updated 2 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆216Updated last year
• hexrom / PenetrationTesting-Playbook
  Penetration Testing Playbook (PTP)
  ☆176Updated 7 years ago
• commixproject / commix-testbed
  A collection of web pages, vulnerable to command injection flaws
  ☆180Updated 2 years ago
• nairuzabulhul / R3d-Buck3T
  Penetration Testing, Vulnerability Assessment and Red Team Learning
  ☆135Updated last week
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆77Updated 6 years ago
• 1N3 / Exploits
  Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity
  ☆205Updated 4 years ago
• jhaddix / scripts
  Usefull stuff from around teh internetz
  ☆114Updated 8 years ago
• debasishm89 / burpy
  Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…
  ☆123Updated 7 years ago
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆272Updated 4 years ago
• 0x25 / useful
  useful pentest note
  ☆68Updated 2 months ago
• Damian89 / extended-xss-search
  A better version of my xssfinder tool - scans for different types of xss on a list of urls.
  ☆188Updated 6 years ago
• Ekultek / XanXSS
  A simple XSS finding tool
  ☆110Updated 7 years ago
• dipsec / Cheatsheets-1
  Penetration Testing/Security Cheatsheets
  ☆186Updated 6 years ago
• dxa4481 / XSSJacking
  Abusing Self-XSS and Clickjacking to trigger XSS
  ☆136Updated 8 years ago
• exploitprotocol / app-sec-wiki
  Files for appsecwiki.com
  ☆120Updated 5 years ago
• upgoingstar / hackerone_public_reports
  Finds all public bug reports on reported on Hackerone
  ☆95Updated 10 years ago
• codingo / Minesweeper
  A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (crypto…
  ☆205Updated 3 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆167Updated 6 years ago
• foospidy / web-cve-tests
  A simple framework for sending test payloads for known web CVEs.
  ☆133Updated 5 years ago
• Cillian-Collins / dirscraper
  OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.
  ☆229Updated 6 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆156Updated 6 years ago