Alternatives and similar repositories for webappsec-toolkit:

Users that are interested in webappsec-toolkit are comparing it to the libraries listed below

• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• infosec-au / enumapis
  Traverse JS files for APIs/Endpoints
  ☆15Updated 9 years ago
• omercnet / BurpJDSer-ng
  BurpJDSer-ng
  ☆28Updated 2 weeks ago
• smiegles / crossdomain
  Exploit insecure crossdomain.xml files.
  ☆26Updated 7 years ago
• MrTaherAmine / pentest-management
  Simple webinterface combining different recon tools.
  ☆12Updated 7 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• JacobReynolds / xssHunterExtension
  Chrome Extension for XSS Hunter Payloads
  ☆41Updated 8 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆27Updated 6 years ago
• tmendo / BurpIntruderFilePayloadGenerator
  Burp Intruder File Payload Generator
  ☆18Updated 5 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 4 years ago
• rohitcoder / SubR3con
  SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status …
  ☆18Updated 5 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆38Updated 7 years ago
• cornerpirate / iRecon
  Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.
  ☆11Updated 4 years ago
• arvinddoraiswamy / ThickClientScripts
  My IDA scripts, tips and testing techniques for Thick Client applications.
  ☆17Updated 10 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• ChrisTruncer / mikto
  Script to automate, manage, and multithread Nikto scans.
  ☆59Updated 5 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆52Updated 4 years ago
• n4xh4ck5 / V1D0m
  Enumerate subdomains through Virustotal
  ☆32Updated 5 years ago
• strawp / web-shells
  Web shells for use in penetration testing
  ☆39Updated 10 years ago
• bored-engineer / hackeroni-slack-disclosure-bot
  HackerOne Public Disclosure Slack Bot
  ☆20Updated 2 years ago
• securelayer7 / Race-conditional-vulnerable-Web-application-
  This application is developed to test the race condition vulnerability in the web application. We have discussed about this vulnerability…
  ☆14Updated 8 years ago
• joda32 / CertCrunchy
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆30Updated last year
• feakk / xxxpwn
  Advanced XPath Injection Tool
  ☆34Updated 9 years ago
• skorov / subdomainator
  Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…
  ☆26Updated 6 years ago
• rojan-rijal / LeakFinder
  https://sites.google.com/securifyinc.com/secblogs/finding-leaked-sensitive-data
  ☆17Updated 6 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• jstnkndy / scripts
  Scripts that I've written that others may find useful
  ☆14Updated 2 years ago