Alternatives and similar repositories for pentest-tricks

Users that are interested in pentest-tricks are comparing it to the libraries listed below

• codewatchorg / PowerSniper
  Password spraying script and helper for creating password lists
  ☆34Updated 5 years ago
• ChrisTruncer / mikto
  Script to automate, manage, and multithread Nikto scans.
  ☆61Updated 5 years ago
• W00t3k / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆25Updated 7 years ago
• nccgroup / WebFEET
  Web Filter External Enumeration Tool (WebFEET)
  ☆77Updated 11 years ago
• nccgroup / ssh_user_enum
  SSH User Enumeration Script in Python Using The Timing Attack
  ☆93Updated 9 years ago
• ret2jazzy / Struts-Apache-ExploitPack
  These are just some script which you can use to detect and exploit the Apache Struts Vulnerability (CVE-2017-5638)
  ☆16Updated 8 years ago
• michenriksen / nmap-scripts
  A collection of Nmap NSE scripts that I made.
  ☆27Updated 12 years ago
• tahmed11 / strutsy
  Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability
  ☆10Updated 7 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• strawp / random-scripts
  Quick and dirty scripts that don't really belong in a larger project
  ☆34Updated 6 months ago
• diljith369 / avbypassGo
  AV Bypass
  ☆29Updated 7 years ago
• gryhathack / PowerSploit_Sensitive_Info_Hunter
  Modifed PowerSploit/PowerView to search files and match RegEx for Sensitive info (PII, PCI, Passwords, Usernames, SNMP Strings, etc.)
  ☆14Updated 7 years ago
• n00py / pOSt-eX
  Post-exploitation scripts for OS X persistence and privesc
  ☆72Updated 8 years ago
• feakk / xxxpwn
  Advanced XPath Injection Tool
  ☆35Updated 10 years ago
• clr2of8 / G-chimp
  An automated way to send phishing emails from Google/G-suite.
  ☆18Updated 6 years ago
• redteamsecurity / pURL
  API testing tool written with Python
  ☆56Updated 8 years ago
• superkojiman / rfishell
  Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.
  ☆46Updated 8 years ago
• pentestmonkey / ident-user-enum
  ident-user-enum is a simple PERL script to query the ident service (113/TCP) in order to determine the owner of the process listening on …
  ☆36Updated 10 years ago
• vysecurity / basicAuth
  Basic Auth Phish page
  ☆25Updated 8 years ago
• thesubtlety / shocens
  Query Shodan and Censys data for fast parsing
  ☆39Updated 7 years ago
• DanMcInerney / msfbot
  WORK IN PROGRESS. Waits for MSF session then automatically gets domain admin
  ☆64Updated 2 years ago
• ihack4falafel / SLAE32
  Collection of things made during my SLAE 32-bit journey
  ☆14Updated 3 years ago
• joda32 / CertCrunchy
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆30Updated 2 years ago
• jnqpblc / Randomness
  Snippets of scripting randomness
  ☆13Updated 3 years ago
• dionach / PassHunt
  Search drives for documents containing passwords
  ☆63Updated 11 years ago
• ChrisTruncer / gnmap-parser
  Script to parse multiple Nmap .gnmap exports into various plain-text formats for easy analysis.
  ☆24Updated 11 years ago
• obscuritylabs / OS-CFDB
  Open Source - Common Findings DataBase (JSON & MD)
  ☆68Updated 3 years ago
• chrisjd20 / cve-2017-9805.py
  Better Exploit Code For CVE 2017 9805 apache struts
  ☆20Updated 7 years ago
• infosec-au / webappsec-toolkit
  Web Application Security related tools. Includes backdoors, proof of concepts and tricks
  ☆37Updated 10 years ago
• GoSecure / burp-ntlm-challenge-decoder
  Burp extension to decode NTLM SSP headers and extract domain/host information
  ☆32Updated 4 years ago