Alternatives and similar repositories for do-pentest

Users that are interested in do-pentest are comparing it to the libraries listed below

• xapax / owasp-checklist
  ☆28Updated 6 years ago
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆58Updated 5 years ago
• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆53Updated 5 years ago
• vianasw / dvwps
  Damn Vulnerable WordPress Site
  ☆51Updated 2 years ago
• reconmap / web-client
  Reconmap's web client written in React. Manage all your pentest projects from a single place.
  ☆51Updated this week
• jjogal / shodan-dorks
  ☆24Updated 4 months ago
• pageinsec / portswigger_academy
  Scripts and misc. stuff related to the PortSwigger Web Academy
  ☆17Updated 3 years ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• Static-Flow / BurpRequestCleaner
  This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.
  ☆12Updated 4 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆52Updated 2 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 3 years ago
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆45Updated 2 years ago
• ministryofjustice / serpico-templates
  Report and finding templates used by the Serpico reporting tool
  ☆16Updated 7 years ago
• hoodoer / endgame
  An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…
  ☆12Updated 4 years ago
• so87 / Exploit-Development-and-Pentesting
  My notes, exercises, and reports on reverse engineering and penetrating applications
  ☆17Updated 6 years ago
• maverickNerd / Preparation-Guide-to-OSCP
  Journey to Try Harder !!!
  ☆33Updated 6 years ago
• nexxai / Substr3am
  Passive reconnaissance/enumeration of interesting targets by watching for SSL certificates being issued
  ☆68Updated 3 years ago
• fuzz-security / Active-Directory-Exploitation-Cheat-Sheet
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆50Updated 5 years ago
• nachiketrathod / HTTP.Request.Smuggling.Desync.Attack
  ☆15Updated 4 years ago
• AlgoSecure / Pollenisator
  Collaborative pentest tool with highly customizable tools
  ☆75Updated 3 years ago
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆21Updated 4 months ago
• reconmap / rest-api
  REST API backend for Reconmap
  ☆47Updated last week
• redhuntlabs / Project-Resonance
  ☆53Updated 9 months ago
• Orange-Cyberdefense / mass-nessus-docker
  Deploy multiple instances of Nessus in docker containers easily
  ☆20Updated 4 years ago
• redhuntlabs / Log4JHunt
  An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.
  ☆44Updated 9 months ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆76Updated 3 years ago
• KarimPwnz / dns-exfil
  Open a DNS server that knows no records but records every request. Used for DNS exfiltration.
  ☆69Updated 3 years ago
• austinsonger / OSCP
  Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.
  ☆47Updated 3 years ago
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆61Updated 3 years ago
• vp777 / metahttp
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆38Updated 4 years ago