Alternatives and similar repositories for awesome-web-security:

Users that are interested in awesome-web-security are comparing it to the libraries listed below

• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆40Updated 6 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Updated 11 years ago
• s7acktrac3 / OSCE-Exploit-Scripts
  Updated 6 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• yehgdotnet / S3Scanner
  Scan for open S3 buckets and dump
  ☆36Updated 7 years ago
• viperbluff / WAF_buster
  Disrupt WAF by abusing SSL/TLS Ciphers
  ☆48Updated 6 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆51Updated 6 years ago
• samhaxr / XXRF-Shots
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Updated 2 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆27Updated 6 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆23Updated 8 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 6 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 4 years ago
• ecbftw / poc
  A collection of published exploits and proof-of-concept code.
  ☆21Updated 7 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆66Updated last year
• destine21 / ZIPFileRaider
  ZIP File Raider - Burp Extension for ZIP File Payload Testing
  ☆70Updated 4 years ago
• cheetz / generateJenkinsExploit
  ☆29Updated 6 years ago
• redtimmy / OAMBuster
  Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)
  ☆24Updated 5 years ago
• Den1al / pymassdns
  A Pythonic wrapper to MassDNS
  ☆24Updated 7 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• MohitDabas / sastgriper
  A simple grep user interface for searching code which can be used for SAST.
  ☆8Updated 5 years ago
• PortSwigger / detect-dynamic-js
  The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…
  ☆13Updated 6 years ago
• PolarisLab / Drupal-Exploit
  Drupal 7.x Services Module Remote Code Execution Exploit - https://www.ambionics.io/blog/drupal-services-module-rce
  ☆14Updated 8 years ago