Alternatives and similar repositories for DVWA:

Users that are interested in DVWA are comparing it to the libraries listed below

• MUAZMHAFIDZ / React-Chat-App
  ☆10Updated 2 months ago
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,469Updated last year
• maurosoria / dirsearch
  Web path scanner
  ☆12,719Updated last month
• rapid7 / metasploitable3
  Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
  ☆4,966Updated last month
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆5,226Updated this week
• xmendez / wfuzz
  Web application fuzzer
  ☆6,126Updated 7 months ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,581Updated 3 months ago
• urbanadventurer / WhatWeb
  Next generation web scanner
  ☆5,794Updated 8 months ago
• Veil-Framework / Veil
  Veil 3.1.X (Check version info in Veil at runtime)
  ☆4,078Updated last year
• payloadbox / xss-payload-list
  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
  ☆6,868Updated 8 months ago
• OJ / gobuster
  Directory/File, DNS and VHost busting tool written in Go
  ☆11,239Updated last week
• byt3bl33d3r / CrackMapExec
  A swiss army knife for pentesting networks
  ☆8,654Updated last year
• trustedsec / ptf
  The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
  ☆5,249Updated 6 months ago
• samratashok / nishang
  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
  ☆9,096Updated 11 months ago
• rebootuser / LinEnum
  Scripted Local Linux Enumeration & Privilege Escalation Checks
  ☆7,279Updated last year
• andresriancho / w3af
  w3af: web application attack and audit framework, the open source web vulnerability scanner.
  ☆4,688Updated 2 years ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,769Updated 3 years ago
• beefproject / beef
  The Browser Exploitation Framework Project
  ☆10,124Updated last week
• epinna / weevely3
  Weaponized web shell
  ☆3,280Updated 5 months ago
• aboul3la / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆10,243Updated 8 months ago
• sqlmapproject / sqlmap
  Automatic SQL injection and database takeover tool
  ☆33,709Updated last week
• Arachni / arachni
  Web Application Security Scanner Framework
  ☆3,869Updated last year
• vanhauser-thc / thc-hydra
  hydra
  ☆10,254Updated 2 weeks ago
• offensive-security / exploitdb
  The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb
  ☆7,763Updated 2 years ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,898Updated 11 months ago
• foospidy / payloads
  Git All the Payloads! A collection of web attack payloads.
  ☆3,744Updated last year
• The-Z-Labs / linux-exploit-suggester
  Linux privilege escalation auditing tool
  ☆5,868Updated last year
• Audi-1 / sqli-labs
  SQLI labs to test error based, Blind boolean based, Time based.
  ☆5,417Updated last year
• s0md3v / XSStrike
  Most advanced XSS scanner.
  ☆13,774Updated 2 weeks ago
• nmap / nmap
  Nmap - the Network Mapper. Github mirror of official SVN repository.
  ☆10,845Updated last week