Alternatives and similar repositories for bWAPP

Users that are interested in bWAPP are comparing it to the libraries listed below

• PortSwigger / xss-validator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆88Updated 3 years ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆232Updated 5 years ago
• Sjord / jwtdemo
  Practice hacking JWT tokens
  ☆114Updated 2 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆75Updated 3 years ago
• Audi-1 / Awesome-Red-Teaming
  List of Awesome Red Teaming Resources
  ☆45Updated 7 years ago
• skiptomyliu / solutions-bwapp
  In progress rough solutions to bWAPP / bee-box
  ☆175Updated 5 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆165Updated 2 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆246Updated 4 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆60Updated 7 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆141Updated 6 years ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆131Updated 4 years ago
• NetSPI / Wsdler
  WSDL Parser extension for Burp
  ☆249Updated 6 years ago
• pimps / CVE-2018-7600
  Exploit for Drupal 7 <= 7.57 CVE-2018-7600
  ☆134Updated 7 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆291Updated 2 years ago
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆446Updated last year
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆226Updated 4 months ago
• TheTwitchy / xxer
  A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.
  ☆519Updated 4 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆407Updated 2 years ago
• CSPF-Founder / btslab
  Vulnerable web application
  ☆77Updated 2 years ago
• PortSwigger / json-web-tokens
  JWT Support for Burp
  ☆116Updated last month
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆110Updated 5 years ago
• nixawk / fuzzdb
  Web Fuzzing Discovery and Attack Pattern Database
  ☆114Updated 7 years ago
• PortSwigger / hackvertor
  ☆96Updated 2 months ago
• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆137Updated 6 years ago
• breaktoprotect / CVE-2017-12615
  POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.
  ☆112Updated 2 years ago
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆331Updated 5 years ago
• bcoles / ssrf_proxy
  SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.
  ☆462Updated 7 years ago
• ozzi- / JWT4B
  JWT Support for Burp
  ☆256Updated 2 months ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆110Updated 6 years ago
• LandGrey / CVE-2019-7609
  exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts
  ☆163Updated last year