Alternatives and similar repositories for bWAPP

Users that are interested in bWAPP are comparing it to the libraries listed below

• Karmaz95 / crimson
  Web Application Security Testing Tools
  ☆250Updated last year
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆85Updated 5 years ago
• vavkamil / dvwp
  Damn Vulnerable WordPress
  ☆193Updated last year
• emadshanab / Nmap-NSE-scripts-collection
  ☆171Updated last month
• RoqueNight / LFI---RCE-Cheat-Sheet
  Transition form local file inclusion attacks to remote code exection
  ☆66Updated 5 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆63Updated 5 years ago
• PortSwigger / request-timer
  Burp request/response timer
  ☆35Updated 8 years ago
• Sq00ky / attacktive-directory-tools
  ☆39Updated 2 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆110Updated last year
• relarizky / wpxploit
  Simple Python Script For Performing XMLRPC Dictionary Attack
  ☆135Updated 4 years ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆91Updated 2 years ago
• rinetd / BurpSuite-1
  BurpSuite using the document and some extensions
  ☆71Updated 5 years ago
• kh4sh3i / Apache-Tomcat-Pentesting
  Apache Tomcat exploit and Pentesting guide for penetration tester
  ☆63Updated 3 years ago
• MuirlandOracle / CVE-2019-15107
  ☆51Updated last year
• PortSwigger / serialization-examples
  ☆42Updated 2 years ago
• ihebski / XSS-Payloads
  Collection of XSS Payloads for fun and profit
  ☆191Updated 5 years ago
• flast101 / php-8.1.0-dev-backdoor-rce
  PHP 8.1.0-dev Backdoor System Shell Script
  ☆94Updated 4 years ago
• DragonJAR / Security-Wordlist
  A wordlist repository with human-curated and reviewed content.
  ☆120Updated 2 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• 21y4d / blindSQLi
  A python based blind SQL injection exploitation script
  ☆141Updated 5 years ago
• Sait-Nuri / CVE-2018-15473
  OpenSSH 2.3 < 7.7 - Username Enumeration
  ☆43Updated 2 years ago
• PortSwigger / logger-plus-plus
  Burp Suite Logger++: Log activities of all the tools in Burp Suite
  ☆182Updated last year
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆78Updated 5 years ago
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆124Updated last year
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆159Updated 3 years ago
• wisec / OWASP-Testing-Guide-v5
  The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and…
  ☆78Updated 6 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆54Updated 2 years ago
• effortlessdevsec / ninjasworkout
  Vulnerable NodeJS Web Application
  ☆97Updated last year
• ahmetgurel / Pentest-Hints
  Tips for Penetration Testing
  ☆134Updated 2 years ago
• payloadbox / csv-injection-payloads
  🎯 CSV Injection Payloads
  ☆236Updated last year