Alternatives and similar repositories for xvwa:

Users that are interested in xvwa are comparing it to the libraries listed below

• bartblaze / PHP-backdoors
  A collection of PHP backdoors. For educational or testing purposes only.
  ☆2,222Updated last year
• JohnTroony / php-webshells
  Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!
  ☆1,900Updated 4 years ago
• InteliSecureLabs / Linux_Exploit_Suggester
  Linux Exploit Suggester; based on operating system release number
  ☆1,784Updated 10 years ago
• rapid7 / hackazon
  A modern vulnerable web app
  ☆984Updated 4 years ago
• mattiasgeniar / php-exploit-scripts
  A collection of PHP exploit scripts, found when investigating hacked servers. These are stored for educational purposes and to test fuzze…
  ☆848Updated last year
• mubix / post-exploitation
  Post Exploitation Collection
  ☆1,563Updated 4 years ago
• snoopysecurity / dvws
  Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn rea…
  ☆455Updated 3 years ago
• epinna / weevely3
  Weaponized web shell
  ☆3,277Updated 5 months ago
• stamparm / DSVW
  Damn Small Vulnerable Web
  ☆804Updated 9 months ago
• evilsocket / bettercap
  DEPRECATED, bettercap developement moved here: https://github.com/bettercap/bettercap
  ☆2,500Updated 7 years ago
• breakthenet / HackMe-SQL-Injection-Challenges
  Pen test your "friend's" online MMORPG game - specific focus, sql injection opportunities
  ☆419Updated 8 years ago
• huntergregal / mimipenguin
  A tool to dump the login password from the current linux user
  ☆3,924Updated last year
• XiphosResearch / exploits
  Miscellaneous exploit code
  ☆1,548Updated last year
• DanMcInerney / net-creds
  Sniffs sensitive data from interface or pcap
  ☆1,738Updated last year
• m57 / dnsteal
  DNS Exfiltration tool for stealthily sending files over DNS requests.
  ☆1,693Updated 3 years ago
• SECFORCE / sparta
  Network Infrastructure Penetration Testing Tool
  ☆1,634Updated 3 years ago
• orlyjamie / mimikittenz
  A post-exploitation powershell tool for extracting juicy info from memory.
  ☆1,840Updated 9 months ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,394Updated 2 months ago
• dotcppfile / DAws
  Advanced Web Shell
  ☆575Updated 7 years ago
• TheRook / subbrute
  A DNS meta-query spider that enumerates DNS records, and subdomains.
  ☆3,416Updated 3 years ago
• ctfs / write-ups-2015
  Wiki-like CTF write-ups repository, maintained by the community. 2015
  ☆1,989Updated 2 years ago
• orangetw / My-CTF-Web-Challenges
  Collection of CTF Web challenges I made
  ☆2,715Updated last year
• rapid7 / ssh-badkeys
  A collection of static SSH keys (public and private) that have made their way into software and hardware products.
  ☆839Updated last month
• cliffe / SecGen
  Create randomly insecure VMs
  ☆2,667Updated last week
• paragonie / awesome-appsec
  A curated list of resources for learning about application security
  ☆6,474Updated last month
• cure53 / XSSChallengeWiki
  Welcome to the XSS Challenge Wiki!
  ☆1,581Updated 4 years ago
• foospidy / payloads
  Git All the Payloads! A collection of web attack payloads.
  ☆3,710Updated last year
• BlackArch / webshells
  Various webshells. We accept pull requests for additions to this collection.
  ☆912Updated last year
• pentestmonkey / unix-privesc-check
  Automatically exported from code.google.com/p/unix-privesc-check
  ☆1,054Updated 4 years ago
• b374k / b374k
  PHP Webshell with handy features
  ☆2,454Updated last year