Alternatives and similar repositories for toolbox-pentest-web

Users that are interested in toolbox-pentest-web are comparing it to the libraries listed below

• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆183Updated 2 years ago
• certmichelin / PTART
  ☆38Updated 2 months ago
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆232Updated last year
• optiv / rest-api-goat
  ☆81Updated 2 years ago
• hakluke / hakscale
  Distribute ordinary bash commands over many systems
  ☆166Updated 2 years ago
• Karmaz95 / crimson
  Web Application Security Testing Tools
  ☆244Updated last year
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆63Updated 5 years ago
• EasyRecon / Hunt3r
  Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework
  ☆168Updated 2 years ago
• Anof-cyber / Pentest-Mapper
  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…
  ☆115Updated last year
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆218Updated 2 years ago
• zzzteph / sheye
  Opensource assets and vulnerability scanning tool
  ☆175Updated 4 months ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆119Updated 2 months ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆238Updated last year
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆192Updated 10 months ago
• az7rb / crt.sh
  Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.
  ☆222Updated 9 months ago
• tr3ss / gofetch
  This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com
  ☆106Updated 2 years ago
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆114Updated 2 years ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆159Updated 6 months ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆123Updated 2 years ago
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆143Updated last year
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆193Updated last month
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆169Updated 4 months ago
• sepehrdaddev / zap-scripts
  Zed Attack Proxy Scripts for finding CVEs and Secrets.
  ☆128Updated 3 years ago
• trufflesecurity / of-CORS
  ☆152Updated last year
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆131Updated 2 years ago
• jhaddix / SubreconGPT
  ☆107Updated 2 years ago
• DevSecOpsDocs / nuclearpond
  Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
  ☆180Updated last year
• Hari-prasaanth / Thick-Client-Pentest-Checklist
  A OWASP Based Checklist With 80+ Test Cases
  ☆145Updated 2 years ago