Alternatives and similar repositories for OWASP-Testing-Guide

Users that are interested in OWASP-Testing-Guide are comparing it to the libraries listed below

• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 7 years ago
• afxdub / http-screenshot-html
  NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.
  ☆27Updated 10 years ago
• AdrianCitu / burp-tabnabbing-extension
  Burp Suite Professional extension in Java for Tabnabbing attack
  ☆13Updated 7 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• cheetz / generateJenkinsExploit
  ☆29Updated 7 years ago
• mpgn / ntlmrelayx-prettyloot
  Convert the loot directory of ntlmrelayx into an enum4linux like output
  ☆22Updated 5 years ago
• alexlauerman / ms10-070CheckPatch
  Check for .net padding oracle patch
  ☆20Updated 6 years ago
• jacob-baines / longtime-sunshine
  Nashorn Post Exploitation
  ☆32Updated 7 years ago
• hvqzao / burp-token-rewrite
  Burp extension for automated handling of CSRF tokens
  ☆16Updated 7 years ago
• GoSecure / gophish-cli
  Gophish Python cli to perform huge phishing campaigns
  ☆40Updated 6 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆40Updated 11 years ago
• woanware / application-restriction-bypasses
  A set of compiled application restriction bypasses
  ☆29Updated 8 years ago
• kacperszurek / pentest_teamcity
  Pentest TeamCity using Metasploit
  ☆44Updated 4 years ago
• phin3has / docker-pentest-lists
  Docker Pentest Lists are collection of Dockerfiles or Links to Dockerfiles for containers used in Penetration Tests
  ☆21Updated 8 years ago
• nccgroup / JDSer-ngng
  A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.
  ☆26Updated 10 years ago
• nixwizard / kube-alien
  ☆25Updated 4 years ago
• V1V1 / AIX-for-Penetration-Testers
  A basic AIX enumeration guide for penetration testers/red teamers
  ☆32Updated 8 years ago
• edermi / go-tomcat-mgmt-scanner
  A simple scanner to find and brute force tomcat manager logins
  ☆28Updated 5 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆17Updated 4 years ago
• riyazwalikar / injection-attacks-nosql-talk
  Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019
  ☆22Updated 6 years ago
• l0ss / Chump2Trump
  Slides from my AD Privesc talk at WAHCKon 2017
  ☆16Updated 8 years ago
• s7acktrac3 / OSCE-Exploit-Scripts
  ☆1Updated 6 years ago
• cornerpirate / gitshell
  A PoC .net shell which uses a GitHub.com repository for the communication channel.
  ☆11Updated 6 years ago
• chrismaddalena / UsefulScripts
  A collection of useful scripts
  ☆24Updated 6 years ago
• summitt / sploits
  Quickly add http and https domains to BurpSuite's scope with all paths.
  ☆16Updated 9 years ago
• random-robbie / aquatone-docker
  Docker Version of Aquatone
  ☆14Updated 7 years ago
• jmxploit / jmxploit
  A tool to analyse JMX API security level.
  ☆43Updated 10 years ago
• johnnyDEP / cobaltstrike
  cobalt strike stuff I have gathered from around github
  ☆31Updated 8 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 7 years ago
• SecurityRiskAdvisors / Burp-Load-Balancer-Cookie-Scanner
  Burp extension to find and decode BigIP and Netscaler cookies
  ☆15Updated 6 years ago