Alternatives and similar repositories for low-hanging

Users that are interested in low-hanging are comparing it to the libraries listed below

• laconicwolf / cors-scanner
  A multi-threaded scanner that helps identify CORS flaws/misconfigurations
  ☆19Updated 5 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 4 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆40Updated 11 years ago
• giovanifss / Gitmails-sh
  An information gathering tool to collect git emails in version control host services
  ☆11Updated 6 years ago
• RUB-NDS / SAML-XXE-Test
  Simple XXE test suite generated specifically for SAML interfaces
  ☆22Updated 7 years ago
• anshumanbh / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆29Updated 6 years ago
• Cillian-Collins / Recon
  The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…
  ☆15Updated 7 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• riyazwalikar / injection-attacks-nosql-talk
  Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
  ☆22Updated 6 years ago
• Damian89 / extended-baserequest-importer
  Scan and import relevant requests directly to burp!
  ☆9Updated 5 years ago
• n4xh4ck5 / V1D0m
  Enumerate subdomains through Virustotal
  ☆32Updated 5 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 4 years ago
• laconicwolf / Dirscover
  A multi-processed, multi-threaded scanner to discover web directories on multiple URLs.
  ☆21Updated 5 years ago
• awillard1 / Pen-Test-Tools
  All the information provided on this site is for educational purposes only.
  ☆18Updated last year
• PortSwigger / detect-dynamic-js
  The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…
  ☆13Updated 6 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆52Updated 6 years ago
• random-robbie / s3-tko
  AWS S3 Bucket Finder.
  ☆15Updated 5 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• DFC302 / subseeker
  A sub-domain enumeration tool
  ☆19Updated 5 years ago
• makash / effective-ssh-usage-for-pentesters
  This is a beginner level session to train you into using SSH more effectively. While pentesters may benefit (especially if they are plan…
  ☆15Updated 6 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• Matir / webborer
  WebBorer is a directory-enumeration tool written in Go.
  ☆44Updated 2 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆46Updated 6 years ago
• ngalongc / nmap_dnsrecon_result
  A wrap up script to auto perform nmap scan from the result of dnsrecon, then output result with filename as hostname and ip
  ☆11Updated 6 years ago
• nccgroup / wstalker
  WStalker: an easy proxy
  ☆25Updated 5 years ago