Alternatives and similar repositories for low-hanging

Users that are interested in low-hanging are comparing it to the libraries listed below

• nccgroup / clickjacking-poc
  Clickjacking PoC Generator
  ☆35Updated 5 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆40Updated 11 years ago
• dariusztytko / progress-burp
  Burp Suite extension to track vulnerability assessment progress
  ☆59Updated 5 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• random-robbie / s3-tko
  AWS S3 Bucket Finder.
  ☆15Updated 5 years ago
• cybernova / DNSaxfr
  Shell script for testing DNS zone transfer (AXFR query) on domains and subdomains recursively.
  ☆51Updated 4 years ago
• RUB-NDS / SAML-XXE-Test
  Simple XXE test suite generated specifically for SAML interfaces
  ☆22Updated 7 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Updated 7 years ago
• random-robbie / metadata-one-liners
  retrive metadata endpoint data with these one liners.
  ☆41Updated 5 years ago
• laconicwolf / cors-scanner
  A multi-threaded scanner that helps identify CORS flaws/misconfigurations
  ☆19Updated 5 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆48Updated 6 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 5 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 5 years ago
• karelorigin / XSS-Problems
  ☆34Updated 6 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 5 years ago
• tmendo / BurpIntruderFilePayloadGenerator
  Burp Intruder File Payload Generator
  ☆18Updated 5 years ago
• DFC302 / subseeker
  A sub-domain enumeration tool
  ☆20Updated 5 years ago
• PortSwigger / detect-dynamic-js
  The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…
  ☆13Updated 6 years ago
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆86Updated 5 years ago
• Cillian-Collins / Recon
  The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…
  ☆15Updated 7 years ago
• nmonkee / irule-detector
  notorious BIG IP
  ☆15Updated 6 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 5 years ago
• Den1al / pymassdns
  A Pythonic wrapper to MassDNS
  ☆24Updated 7 years ago
• laconicwolf / Dirscover
  A multi-processed, multi-threaded scanner to discover web directories on multiple URLs.
  ☆21Updated 5 years ago
• fnk0c / dot2moon
  Tool that checks for path traversal traces in a given web application url, plus it is capable of multi-threading, set timeout and 5-layer…
  ☆46Updated 7 years ago
• rojan-rijal / Pyrate
  Practice Web App written in python with some vulnerabilities.
  ☆34Updated 4 years ago
• righettod / virtualhost-payload-generator
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Updated 8 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆41Updated 7 years ago