Alternatives and similar repositories for web-pentesting

Users that are interested in web-pentesting are comparing it to the libraries listed below

• payloadbox / directory-payload-list
  🎯 Directory Payload List
  ☆176Updated last year
• omkar-ukirde / api-pentesting
  API Pentesting notes.
  ☆96Updated 10 months ago
• Anon-Artist / R3C0Nizer
  R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.
  ☆154Updated 4 years ago
• HacktivistRO / Bug-Bounty-Wordlists
  This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…
  ☆104Updated 10 months ago
• payloadbox / csv-injection-payloads
  🎯 CSV Injection Payloads
  ☆225Updated last year
• m0chan / Red-Teaming-Toolkit
  A collection of open source and commercial tools that aid in red team operations.
  ☆50Updated 5 years ago
• m4ll0k / Awesome-Bugbounty-Writeups
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆42Updated 4 years ago
• kh4sh3i / smartrecon
  smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter
  ☆155Updated last year
• ihebski / XSS-Payloads
  Collection of XSS Payloads for fun and profit
  ☆186Updated 5 years ago
• MayankPandey01 / BrokenLinkHijacker
  A Fast Broken Link Hijacker Tool written in Python
  ☆100Updated last year
• InfoSecWarrior / Offensive-Pentesting-Web
  A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed…
  ☆76Updated 7 months ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆124Updated 3 years ago
• zapstiko / Bug-Bounty
  Here Are Some Bug Bounty Resource From Twitter
  ☆100Updated 3 months ago
• Proviesec / github-dorks
  Useful Github Dorks for BugBounty -
  ☆66Updated 2 years ago
• kyawthiha7 / pentest-methodology
  ☆78Updated 6 years ago
• relarizky / wpxploit
  Simple Python Script For Performing XMLRPC Dictionary Attack
  ☆134Updated 4 years ago
• M4xSec / BugDog
  A Powerfull BUG HUNTING TOOL. Supports SQL, XSS, PHP code execution, SSRF,.... I had Appended My Own Payloads which I had founded during …
  ☆54Updated 4 years ago
• shifa123 / clickjackingpoc
  A Proof of Concept for Clickjacking Attacks
  ☆57Updated 4 years ago
• KingOfBugbounty / KingRecon_DOD
  ☆76Updated last year
• DevanshRaghav75 / AutomationGuide
  Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
  ☆41Updated 4 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆262Updated last year
• ahmad0x1 / ARWAD
  Advanced Reconnaissance and Web Application Discovery
  ☆89Updated 3 years ago
• root-tanishq / setmykali
  SetMyKali is a bash based tool to configure and customize kali linux
  ☆69Updated 3 years ago
• JoyGhoshs / 0install
  A bash script that will automatically install Bug Hunting tools used for recon
  ☆177Updated 2 years ago
• KingOfBugbounty / Bug-Bounty-Toolz
  BBT - Bug Bounty Tools
  ☆55Updated 4 years ago
• eslam3kl / crtfinder
  Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search…
  ☆114Updated 3 years ago
• thenurhabib / collector
  Collect XSS vulnerable parameters from entire domain.
  ☆152Updated 3 years ago
• x0x8x / awesome-pentester
  Awestome list of pentesting resources.
  ☆120Updated last year
• Stonzyy / dumpxss
  Scanner Tool For XSS Vulnerability
  ☆81Updated 3 years ago
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago