Alternatives and similar repositories for cheatSheatForPentest

Users that are interested in cheatSheatForPentest are comparing it to the libraries listed below

• C4l1b4n / NoSQL-Attack-Suite
  A couple of different scripts, made to automate attacks against NoSQL databases.
  ☆66Updated last year
• securebinary / o365sprayer
  An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.
  ☆49Updated 3 years ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆56Updated 3 years ago
• carlospolop / Leakos
  ☆74Updated last year
• carlospolop / Gorks
  ☆66Updated 2 years ago
• carlospolop / Pastos
  ☆56Updated 3 years ago
• r1cksec / corptrace
  Automate Scoping, OSINT and Recon assessments.
  ☆99Updated 3 weeks ago
• N1arut / Pentesting-Mind-Map
  Web Hacking and Red Teaming MindMap
  ☆75Updated this week
• nowak0x01 / WPXStrike
  WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…
  ☆68Updated last year
• kostas-pa / LFITester
  LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.
  ☆110Updated 11 months ago
• ZephrFish / GoogD0rk
  ☆43Updated 6 months ago
• ccelikanil / Cheat-Sheets
  ☆29Updated 4 years ago
• n0kovo / awesome-wordlists
  A curated list wordlists for bruteforcing and fuzzing
  ☆84Updated 2 years ago
• HITH-Hackerinthehouse / PassMute
  PassMute - A multi featured Password Transmutation/Mutator Tool
  ☆53Updated 2 years ago
• minispooner / red-team-playground
  Docker network containing many vulnerable targets for practicing Red Teaming concepts (initial access, priv esc, persistence, lateral, C2…
  ☆85Updated 2 years ago
• p0dalirius / LFIDump
  A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.
  ☆76Updated last year
• SujalMeghwal / SidePeek.js
  SidePeek.js is a curated set of JavaScript payloads for browser-based recon. Run them in DevTools or as bookmarklets to uncover hidden AP…
  ☆19Updated 6 months ago
• Christbowel / Red-Teamer
  Red Teaming tools and techniques
  ☆55Updated 2 years ago
• blue0x1 / Arescan
  Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a br…
  ☆31Updated 2 years ago
• AD-Attacks / Active-Directory-Penetration-Testing
  ☆21Updated last year
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆34Updated last year
• Xib3rR4dAr / WannaRace
  WebApp intentionally made vulnerable to Race Condition for practicing Race Condition
  ☆25Updated 3 years ago
• regorsec / Linux-Post-Exploitation
  Tips, Tricks, and Scripts for Linux Post Exploitation
  ☆38Updated 2 years ago
• alperenugurlu / AD_Enumeration_Hunt
  ☆91Updated 2 years ago
• sunw4r / creepedin
  Simple chrome extension for full name extraction and conversion to emails/usernames. Utilizes the 'people' tab of the target company on L…
  ☆27Updated 6 months ago
• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆66Updated 3 years ago
• Mr-P-D / Favicon-Hash-For-Shodan.io
  this script will help you find favicon hashes which you can use to shodan to get more details about an asset
  ☆29Updated 8 months ago
• boringthegod / postmaniac
  Postman OSINT tool to extract creds, token, username, email & more from Postman Public Workspaces
  ☆163Updated 6 months ago
• 4ndr34z / Enhanced-Hack-Tools
  The all-in-one Red Team extension for Web Pentester. Added more functionality
  ☆16Updated 3 years ago
• 0xjbb / static-nmap
  Statically compiled nmap with scripting
  ☆13Updated 4 years ago