Alternatives and similar repositories for awesome-pentest

Users that are interested in awesome-pentest are comparing it to the libraries listed below

• yehia-mamdouh / XSSYA-V-2.0
  ☆83Updated 8 years ago
• portcullislabs / xssshell-xsstunnel
  XSS Tunnel is a standard HTTP proxy which sits on an attacker’s system. XSS Shell is a powerful XSS backdoor, in XSS Shell one can inter…
  ☆88Updated 11 years ago
• viperbluff / PortWitness
  Tool for checking Whether a domain or its multiple sub-domains are up and running.
  ☆71Updated 7 years ago
• 1N3 / HTTPoxyScan
  HTTPoxy Exploit Scanner by 1N3 @CrowdShield
  ☆103Updated 8 years ago
• yehia-mamdouh / XSSYA
  XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation)
  ☆97Updated 3 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 7 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆95Updated 7 years ago
• PaulSec / CSRFT
  A lightweight CSRF Toolkit for easy Proof of concept
  ☆172Updated 11 years ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆43Updated 12 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 11 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆42Updated 8 years ago
• strozfriedberg / xxe-recursive-download
  ☆231Updated 10 years ago
• Ganapati / Crawlic
  Web recon tool (find temporary files, parse robots.txt, search some folders, google dorks and search domains hosted on same server)
  ☆104Updated 9 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 13 years ago
• shogunlab / shuriken
  Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
  ☆139Updated 2 years ago
• n4xh4ck5 / N4xD0rk
  Listing subdomains about a main domain
  ☆58Updated 7 years ago
• Graph-X / davscan
  Fingerprints servers, finds exploits, scans WebDAV. May or may not also make coffee.
  ☆123Updated 6 years ago
• SecarmaLabs / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆44Updated 8 years ago
• falcon-lnhg / mwebfp
  LNHG - Mass Web Fingerprinter
  ☆63Updated 9 years ago
• vulnex / Tintorera
  Source Code Intelligence
  ☆30Updated 8 years ago
• thomaspatzke / POODLEAttack
  PoC implementation of the POODLE attack
  ☆69Updated 10 years ago
• vankyver / burp-vulners-scanner-old
  Burp scanner plugin based on Vulners.com vulnerability database
  ☆25Updated 8 years ago
• Danladi / HttpPwnly
  "Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protecti…
  ☆138Updated 8 years ago
• godinezj / metasploit-framework
  Metasploit Framework
  ☆26Updated 3 months ago
• SpiderLabs / burplay
  Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…
  ☆83Updated 8 years ago
• thomaspatzke / WASE
  The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
  ☆113Updated 5 years ago
• sethsec / PyCodeInjection
  Automated Python Code Injection Tool
  ☆87Updated 4 years ago
• enjoiz / BSQLinjector
  Blind SQL injection exploitation tool written in ruby.
  ☆99Updated last year
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆48Updated 3 years ago