Alternatives and similar repositories for DVNA:

Users that are interested in DVNA are comparing it to the libraries listed below

• silentsignal / damn-vulnerable-stateful-web-app
  Short and simple vulnerable PHP web application that naïve scanners found to be perfectly safe
  ☆14Updated 9 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 8 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆51Updated 4 years ago
• calebwatt15 / vrdb
  A vulnerability reporting database to help pentesters write consistent, easy reports.
  ☆9Updated 9 years ago
• v-egoshin / WindowsUploadToolkit
  PHDAYS |||
  ☆17Updated 11 years ago
• superkojiman / dirtshell
  Provide a sort of shell-ish interface to make file directory traversal quicker and easier.
  ☆24Updated 8 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• incredibleindishell / LDAP-credentials-collector-backdoor-generator
  This script generate backdoor code which log username password of an user who have passed HTTP basic auth using LDAP credentials.
  ☆58Updated 7 years ago
• rgerganov / xxe-example
  XXE vulnerability demo
  ☆22Updated 10 years ago
• ZephrFish / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆25Updated 7 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 7 years ago
• brandonprry / vulnerable_xxe
  A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.
  ☆26Updated 11 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 7 years ago
• vysecurity / redteam-plan
  Issues to consider when planning a red team exercise.
  ☆15Updated 7 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆38Updated 7 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• ckt29175 / oscp
  OSCP related stuff ^_^ - Try Harder!
  ☆9Updated 6 years ago
• tahmed11 / strutsy
  Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability
  ☆10Updated 6 years ago
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆30Updated 7 years ago
• Charliedean / PsexecSpray
  Spray SMB with hashes, Then psexec
  ☆32Updated 5 years ago
• JacobReynolds / xssHunterExtension
  Chrome Extension for XSS Hunter Payloads
  ☆41Updated 8 years ago
• omercnet / BurpJDSer-ng
  BurpJDSer-ng
  ☆28Updated last month
• silentsignal / wpc
  Windows Privesc Check
  ☆20Updated 10 years ago
• burp-hash / burp-hash
  ☆32Updated 9 years ago
• arvinddoraiswamy / ThickClientScripts
  My IDA scripts, tips and testing techniques for Thick Client applications.
  ☆17Updated 10 years ago
• packetforger / localroot
  Collection of tools for privesc on Linux
  ☆34Updated 11 years ago
• AonCyberLabs / MAM-Security-Checklist
  Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution
  ☆19Updated 9 years ago
• toddsiegel / spscan
  SharePoint scanner and fingerprinter based on WPScan
  ☆25Updated 11 years ago
• anshumanbh / FASTSAM
  Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices
  ☆18Updated 8 years ago
• zachhilbert / reconscan
  A modified version of Mike Czumak's enumeration scanner
  ☆19Updated 6 years ago