Alternatives and similar repositories for OWASP-Web-App-Pentesting-checklists

Users that are interested in OWASP-Web-App-Pentesting-checklists are comparing it to the libraries listed below

• iamthefrogy / bucketbunny
  AWS S3 open bucket poc automated script.
  ☆57Updated 3 years ago
• fellchase / flumberboozle
  Suite of programs meant to aid in bug hunting and security assessments
  ☆76Updated 5 years ago
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆51Updated 5 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆100Updated 3 years ago
• Rhynorater / reports
  ☆59Updated 11 months ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆69Updated 4 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆91Updated 2 weeks ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 4 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆84Updated 4 years ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆58Updated 4 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 4 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆85Updated 2 years ago
• h4ckboy19 / XXE_A_TO_Z
  ☆44Updated 3 years ago
• omkar-ukirde / api-pentesting
  API Pentesting notes.
  ☆97Updated 7 months ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆173Updated 3 years ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 4 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Updated 3 years ago
• sorokinpf / ApiWordlistGenerator
  Generate wordlists for fuzzing API method names
  ☆54Updated 4 years ago
• bonino97 / LemonBooster-v2
  Reestructured LemonBooster.
  ☆47Updated 10 months ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• MrMax4o4 / Hunting-Tips
  ☆9Updated 5 years ago
• darkc0d37 / wordlistsbyNahamsec
  ☆36Updated 5 years ago
• ozguralp / synackapi
  ☆61Updated 11 months ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 4 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆96Updated 2 years ago