Alternatives and similar repositories for toolbox-pentest-web

Users that are interested in toolbox-pentest-web are comparing it to the libraries listed below

• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆294Updated 5 months ago
• certmichelin / PTART
  ☆41Updated last week
• belane / CloudHunter
  AWS, Azure, Alibaba and Google bucket scanner
  ☆174Updated 2 years ago
• optiv / rest-api-goat
  ☆84Updated 2 years ago
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆239Updated 2 years ago
• Karmaz95 / crimson
  Web Application Security Testing Tools
  ☆251Updated last year
• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆128Updated 3 years ago
• hakluke / hakscale
  Distribute ordinary bash commands over many systems
  ☆168Updated 3 years ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆245Updated 2 years ago
• yeswehack / xsstools
  xss development frameworks, with the goal of making payload writing easier.
  ☆152Updated last year
• zzzteph / sheye
  Opensource assets and vulnerability scanning tool
  ☆186Updated 3 weeks ago
• PalindromeLabs / awesome-websocket-security
  Awesome information for WebSockets security research
  ☆299Updated 4 years ago
• tkisason / vulnapi
  Intentionaly very vulnerable API with bonus bad coding practices
  ☆51Updated 2 months ago
• punk-security / secret-magpie
  Secret Magpie - Secret Detection Tool
  ☆246Updated last year
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆126Updated last year
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆282Updated 5 months ago
• purabparihar / Infrastructure-Pentesting-Checklist
  ☆138Updated 4 years ago
• six2dez / obsidian-pentesting-vault
  Sample Obsidian's vault for web pentesting
  ☆104Updated last year
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 3 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆65Updated 5 years ago
• marmicode / websheep
  🐑 Websheep is an app based on a willingly vulnerable ReSTful APIs.
  ☆57Updated last year
• hakluke / bug-bounty-standards
  A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…
  ☆236Updated 4 years ago
• sepehrdaddev / zap-scripts
  Zed Attack Proxy Scripts for finding CVEs and Secrets.
  ☆129Updated 3 years ago
• musana / mx-takeover
  mx-takeover focuses DNS MX records and detects misconfigured MX records.
  ☆359Updated 2 years ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆203Updated 3 weeks ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆190Updated 3 years ago
• Hackmanit / template-injection-playground
  The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…
  ☆58Updated last month
• cosad3s / postleaks
  Search for sensitive data in Postman public library.
  ☆214Updated 5 months ago
• nicholasaleks / CrackQL
  CrackQL is a GraphQL password brute-force and fuzzing utility.
  ☆346Updated last year
• trufflesecurity / of-CORS
  ☆154Updated 2 years ago