Alternatives and similar repositories for vulnerable-api:

Users that are interested in vulnerable-api are comparing it to the libraries listed below

• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆90Updated this week
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• Rhynorater / reports
  ☆59Updated 7 months ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• rammarj / csrf-poc-creator
  A Burp Suite extension for CSRF proof of concepts.
  ☆49Updated last year
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated 2 years ago
• honoki / bbrf-dashboard
  ☆37Updated 3 weeks ago
• honoki / wilson-cloud-respwnder
  WILSON Cloud Respwnder is a Web Interaction Logger Sending Out Notifications with the ability to serve custom content in order to appropr…
  ☆51Updated 5 months ago
• devanshbatham / awesome-bughunting-oneliners
  A list of Awesome Bughunting oneliners , collected from the various sources
  ☆64Updated last year
• dwisiswant0 / continuous-nuclei
  Running nuclei Continuously
  ☆55Updated 2 years ago
• hakluke / hakfindinternaldomains
  Feed it a list of subdomains, it will resolve them and tell you which ones are internal
  ☆91Updated 3 years ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆56Updated 4 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 4 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆83Updated 4 years ago
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆61Updated 3 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆98Updated 3 years ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆46Updated last year
• iamthefrogy / bucketbunny
  AWS S3 open bucket poc automated script.
  ☆56Updated 3 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆62Updated 3 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆86Updated 4 months ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆80Updated 2 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆61Updated 4 years ago
• TROUBLE-1 / Type-juggling
  Lab that will help you to understand how type juggling vulnerability works.
  ☆22Updated 4 years ago
• michael1026 / trashcompactor
  ☆65Updated 2 years ago
• pry0cc / nahamcon-axiom-demo-2021
  The commands and scripts I used in the Live Recon Village talks
  ☆38Updated 3 years ago