Alternatives and similar repositories for DVWA:

Users that are interested in DVWA are comparing it to the libraries listed below

• MUAZMHAFIDZ / React-Chat-App
  ☆10Updated 3 weeks ago
• MUAZMHAFIDZ / FCC-FileMetadata
  ☆10Updated 11 months ago
• vanhauser-thc / thc-hydra
  hydra
  ☆10,004Updated 5 months ago
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,353Updated last year
• sullo / nikto
  Nikto web server scanner
  ☆8,872Updated 3 weeks ago
• maurosoria / dirsearch
  Web path scanner
  ☆12,475Updated last week
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,474Updated 3 weeks ago
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆4,701Updated this week
• xmendez / wfuzz
  Web application fuzzer
  ☆6,034Updated 5 months ago
• urbanadventurer / WhatWeb
  Next generation web scanner
  ☆5,685Updated 6 months ago
• scipag / vulscan
  Advanced vulnerability scanning with Nmap NSE
  ☆3,538Updated 4 months ago
• 1N3 / Sn1per
  Attack Surface Management Platform
  ☆8,353Updated 3 weeks ago
• andresriancho / w3af
  w3af: web application attack and audit framework, the open source web vulnerability scanner.
  ☆4,658Updated last year
• rebootuser / LinEnum
  Scripted Local Linux Enumeration & Privilege Escalation Checks
  ☆7,164Updated last year
• wpscanteam / wpscan
  WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websit…
  ☆8,751Updated last month
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,855Updated 9 months ago
• 0xInfection / Awesome-WAF
  🔥 Web-application firewalls (WAFs) from security standpoint.
  ☆6,447Updated 3 months ago
• foospidy / payloads
  Git All the Payloads! A collection of web attack payloads.
  ☆3,665Updated last year
• aboul3la / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆10,071Updated 5 months ago
• The-Z-Labs / linux-exploit-suggester
  Linux privilege escalation auditing tool
  ☆5,761Updated 11 months ago
• rapid7 / metasploitable3
  Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
  ☆4,863Updated 7 months ago
• epinna / weevely3
  Weaponized web shell
  ☆3,234Updated 3 months ago
• beefproject / beef
  The Browser Exploitation Framework Project
  ☆10,015Updated last week
• owasp-amass / amass
  In-depth attack surface mapping and asset discovery
  ☆12,376Updated last month
• guelfoweb / knock
  Knock Subdomain Scan
  ☆3,920Updated 2 months ago
• trustedsec / ptf
  The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
  ☆5,212Updated 4 months ago
• byt3bl33d3r / CrackMapExec
  A swiss army knife for pentesting networks
  ☆8,554Updated last year
• SpiderLabs / Responder
  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
  ☆4,586Updated 4 years ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,713Updated 3 years ago
• Tuhinshubhra / CMSeeK
  CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
  ☆2,362Updated 9 months ago