Alternatives and similar repositories for awesome-web-security

Users that are interested in awesome-web-security are comparing it to the libraries listed below

• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 7 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆40Updated 6 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• yehgdotnet / S3Scanner
  Scan for open S3 buckets and dump
  ☆37Updated 7 years ago
• omaidf / OSCE
  Scripts for OSCE
  ☆18Updated 6 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆52Updated 6 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• viperbluff / WAF_buster
  Disrupt WAF by abusing SSL/TLS Ciphers
  ☆48Updated 6 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• Den1al / pymassdns
  A Pythonic wrapper to MassDNS
  ☆24Updated 7 years ago
• ecbftw / poc
  A collection of published exploits and proof-of-concept code.
  ☆21Updated 7 years ago
• s7acktrac3 / OSCE-Exploit-Scripts
  ☆1Updated 6 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• Intrinsec / comission
  WhiteBox CMS analysis
  ☆69Updated 2 years ago
• W00t3k / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆24Updated 7 years ago
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 8 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆23Updated 8 years ago
• Cillian-Collins / Recon
  The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…
  ☆15Updated 7 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆45Updated last year
• 7ioSecurity / XSS-Payloads
  XSS Payloads
  ☆49Updated 9 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 7 years ago
• strawp / random-scripts
  Quick and dirty scripts that don't really belong in a larger project
  ☆34Updated 3 months ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Updated 11 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆52Updated 4 years ago
• incredibleindishell / LDAP-credentials-collector-backdoor-generator
  This script generate backdoor code which log username password of an user who have passed HTTP basic auth using LDAP credentials.
  ☆59Updated 8 years ago
• brandonprry / vulnerable_xxe
  A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.
  ☆26Updated 11 years ago
• ZephrFish / AttackDeploy
  Scripts for Deploying new server
  ☆48Updated last month