Alternatives and similar repositories for bWAPP

Users that are interested in bWAPP are comparing it to the libraries listed below

• PortSwigger / xss-validator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆88Updated 3 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆246Updated 3 years ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆231Updated 5 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆75Updated 3 years ago
• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆137Updated 6 years ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆236Updated 6 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆165Updated 2 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆141Updated 6 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆60Updated 7 years ago
• ozzi- / JWT4B
  JWT Support for Burp
  ☆254Updated last month
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆446Updated last year
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• ONsec-Lab / scripts
  Utils
  ☆267Updated 9 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆488Updated last year
• 0x00-0x00 / FakePip
  Pip install exploit package
  ☆158Updated 6 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆291Updated 2 years ago
• breaktoprotect / CVE-2017-12615
  POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.
  ☆112Updated 2 years ago
• CHYbeta / WAF-Bypass
  WAF Bypass Cheatsheet
  ☆213Updated 7 years ago
• PortSwigger / software-vulnerability-scanner
  Vulnerability scanner based on vulners.com search API
  ☆37Updated 8 months ago
• NetSPI / Wsdler
  WSDL Parser extension for Burp
  ☆247Updated 6 years ago
• TheTwitchy / xxer
  A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.
  ☆515Updated 4 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆226Updated 3 months ago
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆178Updated last year
• joaomatosf / JavaDeserH2HC
  Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).
  ☆503Updated 3 years ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆131Updated 4 years ago
• foobarto / redteam-notebook
  Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.
  ☆433Updated 3 years ago
• frizb / Bypassing-Web-Application-Firewalls
  A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
  ☆276Updated 6 years ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆170Updated last year
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆223Updated last month
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆91Updated last year