Alternatives and similar repositories for Apache-Tomcat-Pentesting

Users that are interested in Apache-Tomcat-Pentesting are comparing it to the libraries listed below

• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆63Updated 5 years ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆79Updated 4 years ago
• GainSec / TreeHouse-Wordlists
  Wordlist for Hacking, Penetration Testing, Vulnerability Assessments and More
  ☆63Updated last year
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆127Updated 4 years ago
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆117Updated 2 years ago
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆115Updated 2 years ago
• clarkvoss / Nuclei-Templates
  ☆80Updated 3 years ago
• tamimhasan404 / FFUF-Tips-And-Tricks
  Describe how to use ffuf different options with examples
  ☆87Updated 2 years ago
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆157Updated 3 years ago
• j3ssie / sdlookup
  IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io
  ☆130Updated 3 years ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆83Updated last year
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆113Updated 9 months ago
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆61Updated 4 years ago
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆93Updated last week
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆89Updated 3 years ago
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆31Updated last year
• moeinfatehi / Admin-Panel_Finder
  A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
  ☆121Updated 3 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆62Updated 3 weeks ago
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆81Updated 5 years ago
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆75Updated last year
• gwen001 / related-domains
  Find related domains of a given domain.
  ☆101Updated 2 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated last year
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆73Updated 2 years ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆79Updated last year
• DevanshRaghav75 / AutomationGuide
  Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
  ☆42Updated 4 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆125Updated 5 years ago
• securebinary / firebaseExploiter
  FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…
  ☆163Updated 2 years ago
• Akokonunes / Private-Nuclei-Templates
  ☆162Updated 2 years ago
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆144Updated last year