Alternatives and similar repositories for awesome-web-security

Users that are interested in awesome-web-security are comparing it to the libraries listed below

• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆45Updated last year
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆52Updated 6 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆24Updated 8 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• ZephrFish / AttackDeploy
  Scripts for Deploying new server
  ☆48Updated 2 months ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 7 years ago
• ecbftw / poc
  A collection of published exploits and proof-of-concept code.
  ☆21Updated 7 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆73Updated 12 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆40Updated 6 years ago
• Cillian-Collins / Recon
  The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…
  ☆15Updated 7 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• viperbluff / WAF_buster
  Disrupt WAF by abusing SSL/TLS Ciphers
  ☆48Updated 6 years ago
• Coalfire-Research / sqlinator
  Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
  ☆83Updated 2 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 7 years ago
• RUB-NDS / SAML-XXE-Test
  Simple XXE test suite generated specifically for SAML interfaces
  ☆22Updated 7 years ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 6 years ago
• dsopas / rfd-checker
  RFD Checker - security CLI tool to test Reflected File Download issues
  ☆63Updated 6 years ago
• aur3lius-dev / SpyDir
  BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration
  ☆23Updated 7 years ago
• Quitten / PT-Manager
  Penetration Test Vulnerabilities Manager is an extension for Burp Suite, written in Jython. It was developed by Barak Tawily in order to …
  ☆31Updated 3 years ago
• Den1al / pymassdns
  A Pythonic wrapper to MassDNS
  ☆24Updated 7 years ago
• karelorigin / XSS-Problems
  ☆34Updated 5 years ago
• joda32 / CertCrunchy
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆30Updated 2 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Updated 12 years ago
• brianlam38 / Sec-Cheatsheets
  Cheatsheets on security vulnerabilities and exploits.
  ☆33Updated 5 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆46Updated 6 years ago
• redteamsecurity / pURL
  API testing tool written with Python
  ☆56Updated 8 years ago
• yehgdotnet / S3Scanner
  Scan for open S3 buckets and dump
  ☆38Updated 7 years ago
• GoSecure / burp-ntlm-challenge-decoder
  Burp extension to decode NTLM SSP headers and extract domain/host information
  ☆32Updated 4 years ago