Docker toolbox for pentest of web based application.
☆182Jul 5, 2026Updated this week
Alternatives and similar repositories for toolbox-pentest-web
Users that are interested in toolbox-pentest-web are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.☆39Jun 26, 2026Updated last week
- Custom scripts for the PIPER Burp extensions.☆98Sep 24, 2023Updated 2 years ago
- A Collection of Proof of Concepts for non-published Web Exploits and Common CVEs☆10Nov 29, 2020Updated 5 years ago
- Automated Web Recon Shell Scripts☆54Dec 6, 2021Updated 4 years ago
- A tool to bruteforce nameservers when working with subdomain delegations to AWS.☆58Aug 22, 2019Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- #JavascriptRecon #bugbounty☆21Aug 18, 2021Updated 4 years ago
- Top level domain scanner in Go☆30Sep 24, 2023Updated 2 years ago
- BugBounty , sort and delete duplicates param value without missing original value☆22Jul 31, 2021Updated 4 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Dec 2, 2020Updated 5 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆32Oct 1, 2024Updated last year
- A framework built on top of Burp's Python Scripter extension.☆93Dec 28, 2023Updated 2 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆57Feb 20, 2020Updated 6 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆73Mar 12, 2022Updated 4 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆178Oct 26, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Subdomain Scanner - the most exhaustive tool for sub-domain recognition and mapping to related IPs and ASNs☆18Jul 4, 2025Updated last year
- Load your data into burp☆11Apr 26, 2023Updated 3 years ago
- ☆18Apr 7, 2022Updated 4 years ago
- I collected it to help the bug hunter get a reward☆58Sep 7, 2022Updated 3 years ago
- Framework to automate Bug Bounty Reconnaissance☆43Jan 4, 2021Updated 5 years ago
- Endpoint monitor tool☆21Sep 16, 2020Updated 5 years ago
- A research project to add some brrrrrr to Burp☆211Feb 16, 2026Updated 4 months ago
- ☆12Dec 26, 2021Updated 4 years ago
- The scripts I write to help me on my bug bounty hunting☆126Jan 8, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A tool for testing subdomain takeover possibilities at a mass scale.☆50May 23, 2021Updated 5 years ago
- ☆751Jun 26, 2024Updated 2 years ago
- ☆65Nov 29, 2022Updated 3 years ago
- ☆26Jun 15, 2025Updated last year
- Provide some tips to handle Injection into application code (OWASP TOP 10 - A1).☆10Nov 11, 2020Updated 5 years ago
- This extension provides a central location for viewing all GraphQL requests/responses within a Burp project. It provides a clean UI that …☆16Feb 24, 2022Updated 4 years ago
- ☆30Jan 15, 2017Updated 9 years ago
- 0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover☆57Dec 15, 2020Updated 5 years ago
- ☆383May 17, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files to…☆73Dec 28, 2022Updated 3 years ago
- A Productivity-Boosting Burp Suite extension written in Kotlin that enables persistent sticky session handling in web application testing…☆14Oct 8, 2025Updated 9 months ago
- Performing automated scan using Burp Suite Pro & Vmware Burp Rest API☆55Sep 30, 2022Updated 3 years ago
- CVE PoCs☆21Jul 16, 2020Updated 5 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Sep 6, 2021Updated 4 years ago
- Tool to find stored robots.txt files from the past☆20Jun 4, 2023Updated 3 years ago
- A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use☆14Aug 30, 2018Updated 7 years ago