Alternatives and similar repositories for web-pentesting

Users that are interested in web-pentesting are comparing it to the libraries listed below

• Anon-Artist / R3C0Nizer
  R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.
  ☆152Updated 4 years ago
• omkar-ukirde / api-pentesting
  API Pentesting notes.
  ☆96Updated last year
• m4ll0k / Awesome-Bugbounty-Writeups
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆43Updated 5 years ago
• ihebski / XSS-Payloads
  Collection of XSS Payloads for fun and profit
  ☆194Updated 5 years ago
• IFLinfosec / shodan-dorks
  How to search on the shodan.io website
  ☆121Updated 5 years ago
• ahmetgurel / Pentest-Hints
  Tips for Penetration Testing
  ☆134Updated 2 years ago
• MayankPandey01 / BrokenLinkHijacker
  A Fast Broken Link Hijacker Tool written in Python
  ☆99Updated last year
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆123Updated 3 years ago
• skynet0x01 / tugarecon
  Pentest: Subdomains enumeration tool for penetration testers.
  ☆182Updated last month
• KingOfBugbounty / Bug-Bounty-Toolz
  BBT - Bug Bounty Tools
  ☆58Updated 4 years ago
• root-tanishq / setmykali
  SetMyKali is a bash based tool to configure and customize kali linux
  ☆69Updated 3 years ago
• JoyGhoshs / 0install
  A bash script that will automatically install Bug Hunting tools used for recon
  ☆178Updated 2 years ago
• daffainfo / bash-bounty
  Random Tools for Bug Bounty
  ☆149Updated 3 years ago
• m0chan / Red-Teaming-Toolkit
  A collection of open source and commercial tools that aid in red team operations.
  ☆48Updated 5 years ago
• kh4sh3i / smartrecon
  smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter
  ☆156Updated last year
• relarizky / wpxploit
  Simple Python Script For Performing XMLRPC Dictionary Attack
  ☆135Updated 4 years ago
• shifa123 / clickjackingpoc
  A Proof of Concept for Clickjacking Attacks
  ☆57Updated 4 years ago
• eslam3kl / crtfinder
  Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search…
  ☆115Updated 4 years ago
• storenth / lazyrecon
  Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
  ☆150Updated 2 years ago
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago
• payloadbox / directory-payload-list
  🎯 Directory Payload List
  ☆185Updated last year
• M4xSec / BugDog
  A Powerfull BUG HUNTING TOOL. Supports SQL, XSS, PHP code execution, SSRF,.... I had Appended My Own Payloads which I had founded during …
  ☆56Updated 4 years ago
• D4Vinci / CWFF
  Create your Custom Wordlist For Fuzzing
  ☆201Updated last year
• The-XSS-Rat / BugHuntingNotes
  ☆31Updated 5 years ago
• thenurhabib / collector
  Collect XSS vulnerable parameters from entire domain.
  ☆155Updated 3 years ago
• CoolHandSquid / TireFire
  Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the target. Comfortabl…
  ☆165Updated 4 months ago
• DevanshRaghav75 / AutomationGuide
  Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
  ☆44Updated 4 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆63Updated 4 months ago
• payloadbox / csv-injection-payloads
  🎯 CSV Injection Payloads
  ☆237Updated last year
• zapstiko / Bug-Bounty
  Here Are Some Bug Bounty Resource From Twitter
  ☆103Updated 6 months ago