Alternatives and similar repositories for vulnerable-web

Users that are interested in vulnerable-web are comparing it to the libraries listed below

• xcapri / dProgBb
  Detect Program Bug Bounty
  ☆41Updated 4 months ago
• daffainfo / PayloadsAllTheThings
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆13Updated 3 years ago
• Lu3ky13 / lu3ky13-SCANNER
  tools to find xss in a website
  ☆61Updated 3 years ago
• pikpikcu / hostinject
  hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a ta…
  ☆23Updated last year
• lucsemassa / payload_launcher
  ☆40Updated last year
• rix4uni / xsschecker
  xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.
  ☆21Updated 7 months ago
• tamimhasan404 / Open-Source-Nuclei-Templates-Downloader
  Script that download 37+ open source nuclei templates
  ☆43Updated 2 years ago
• xcapri / subdosec
  Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdoma…
  ☆35Updated last month
• daffainfo / vulnlabs
  A simple vulnerable webapp created by PHP
  ☆12Updated last month
• apapedulimu / Learn-Source-Code-Review
  Learning source code review, spot vulnerability, find some ways how to fix it.
  ☆27Updated 2 years ago
• Elsfa7-110 / Elsfa7110-Oneliner-bughunting
  ☆65Updated 9 months ago
• cyinnove / subfalcon
  subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…
  ☆48Updated 5 months ago
• akshaysharma016 / aem-detector
  ☆21Updated 2 years ago
• SeifElsallamy / XSSFire
  A standalone Blind XSS Script.
  ☆47Updated 2 years ago
• hemantsolo / Host-Header-Injection-Vulnerability-Scanner
  Host Header Vulnerability Scanner Automated Tool
  ☆23Updated last month
• raoufmaklouf / jsecret
  ☆26Updated 11 months ago
• adamjsturge / easy-xsshunter-express
  The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks
  ☆42Updated last year
• husseinphp / Get-All-Parameters
  ☆17Updated last year
• Asbawy / Automation-for-Juniper-cve-2023-36845
  Simple Automation script for juniper cve-2023-36845
  ☆17Updated last year
• eslam3kl / ShoLister
  ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …
  ☆58Updated 3 years ago
• EslamMonex / subdomain-takeover
  ☆16Updated 4 months ago
• SirBugs / JsValidator
  JsValidator is a tool created for validating the JS files after crawlling it from waybackurls
  ☆19Updated 2 years ago
• D1rk9ghT / Recon
  Bug Bounty Recon Tools
  ☆27Updated last year
• gokulapap / submax
  All in one subdomain Enumeration tool
  ☆21Updated 2 years ago
• gokulapap / Pentesting-Resources
  Collection of some pentesting and bugbounty resources
  ☆43Updated 3 years ago
• theVulnerableMMII / oSkan
  This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurity
  ☆23Updated 3 years ago
• NoRed0x / nored0x-Nuclei-Templates
  Nuclei Templates
  ☆21Updated 7 months ago
• System00-Security / findbbprograms
  Check if domain has bug bounty program or not
  ☆27Updated last year
• mrco24 / PH-Recon
  This script will find some basic vulns. I made this script for my daily hunting. The best feature about this script is just run it in bac…
  ☆19Updated last year
• rootbakar / LUcek
  This script checks the status of URLs to see if they are alive or not.
  ☆13Updated 6 months ago