Alternatives and similar repositories for Apache-Tomcat-Pentesting

Users that are interested in Apache-Tomcat-Pentesting are comparing it to the libraries listed below

• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆31Updated last year
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆64Updated 5 years ago
• carlospolop / Gorks
  ☆67Updated 2 years ago
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆119Updated 2 years ago
• carlospolop / Pastos
  ☆58Updated 3 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆64Updated 5 months ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆128Updated 6 years ago
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆95Updated last month
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆159Updated 4 years ago
• GainSec / TreeHouse-Wordlists
  Wordlist for Hacking, Penetration Testing, Vulnerability Assessments and More
  ☆75Updated last month
• tamimhasan404 / FFUF-Tips-And-Tricks
  Describe how to use ffuf different options with examples
  ☆90Updated 3 years ago
• moeinfatehi / Admin-Panel_Finder
  A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
  ☆122Updated 3 years ago
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆124Updated last year
• darklotuskdb / sd-goo
  Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)
  ☆125Updated 6 months ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆77Updated 5 years ago
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆149Updated last year
• DevanshRaghav75 / AutomationGuide
  Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
  ☆44Updated 4 years ago
• carlospolop / Leakos
  ☆78Updated last month
• clarkvoss / Nuclei-Templates
  ☆86Updated 3 years ago
• JonCooperWorks / burp-filefuzzer
  ☆33Updated 4 years ago
• gwen001 / related-domains
  Find related domains of a given domain.
  ☆102Updated 2 years ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆81Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆134Updated 4 years ago
• j3ssie / sdlookup
  IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io
  ☆132Updated 3 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆111Updated last year
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆82Updated 2 years ago
• phor3nsic / favicon_hash_shodan
  Calculate favicon hash for SHODAN
  ☆93Updated last year
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆76Updated this week
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆115Updated 2 years ago
• mhmdiaa / waybackrobots
  Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
  ☆54Updated 2 years ago