Alternatives and similar repositories for vulnerable:

Users that are interested in vulnerable are comparing it to the libraries listed below

• karelorigin / XSS-Problems
  ☆35Updated 5 years ago
• plenumlab / GQL-Helper
  This is a small extension to make graphql readable
  ☆30Updated 6 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 6 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• smiegles / crossdomain
  Exploit insecure crossdomain.xml files.
  ☆26Updated 7 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆23Updated 5 years ago
• JacobReynolds / xssHunterExtension
  Chrome Extension for XSS Hunter Payloads
  ☆41Updated 8 years ago
• infosec-au / webappsec-toolkit
  Web Application Security related tools. Includes backdoors, proof of concepts and tricks
  ☆37Updated 10 years ago
• ettic-team / EndpointFinder-Burp
  ☆31Updated 5 years ago
• skorov / subdomainator
  Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…
  ☆25Updated 6 years ago
• rojan-rijal / Pyrate
  Practice Web App written in python with some vulnerabilities.
  ☆34Updated 3 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• uranium238 / WhatTo
  "What To" guide for finding vulnerabilities in sites.
  ☆21Updated 7 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 4 years ago
• securelayer7 / Race-conditional-vulnerable-Web-application-
  This application is developed to test the race condition vulnerability in the web application. We have discussed about this vulnerability…
  ☆14Updated 8 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆47Updated 2 years ago
• gwen001 / BBstats
  Bug Bounty statistics tool.
  ☆30Updated 2 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• MrTaherAmine / pentest-management
  Simple webinterface combining different recon tools.
  ☆12Updated 6 years ago
• irsdl / OutlookLeakTest
  The Outlook HTML Leak Test Project
  ☆41Updated 6 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 7 years ago
• buckhacker / SubDomainTakeoverTools
  ☆36Updated 6 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆39Updated 6 years ago
• bcoles / sitecore_scan
  A simple remote scanner for Sitecore CMS
  ☆12Updated 8 months ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆44Updated 11 years ago
• random-robbie / mass-s3-bucket-tester
  This tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable
  ☆53Updated 7 months ago
• RUB-NDS / SAML-XXE-Test
  Simple XXE test suite generated specifically for SAML interfaces
  ☆22Updated 6 years ago