Alternatives and similar repositories for cis-benchmarks:

Users that are interested in cis-benchmarks are comparing it to the libraries listed below

• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆67Updated 7 months ago
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆50Updated last year
• righettod / log4shell-analysis
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆31Updated 3 years ago
• darkarnium / Log4j-CVE-Detect
  Detections for CVE-2021-44228 inside of nested binaries
  ☆34Updated 3 years ago
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• thelicato / fire
  Take domains on stdin and output them on stdout if they get resolved
  ☆33Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• OWASP / wwwgrep
  OWASP Foundation Web Respository
  ☆35Updated 3 years ago
• righel / log4shell_nse
  nse script to inject jndi payloads
  ☆46Updated 3 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated last year
• CBHue / nMap_Merger
  Merge multiple nMap xml files into one
  ☆50Updated 5 years ago
• nccgroup / ccs
  ☆110Updated last year
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆39Updated 3 years ago
• cyware-labs / Threat-Response-Docker
  ☆42Updated 2 years ago
• HuskyHacks / O-Course
  A simple web application vulnerability lab made for the HackerOne Veterans day event
  ☆18Updated 4 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• BuffaloWill / whoiswatcher
  Do bulk whois lookups and get alerted on domains of interest.
  ☆33Updated 7 months ago
• righettod / website-passive-reconnaissance
  Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.
  ☆37Updated last month
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆57Updated 5 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 3 years ago
• jorgeorchilles / presentations
  Slides and materials for conference presentations
  ☆11Updated last year
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• austinsonger / OSCP
  Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.
  ☆47Updated 3 years ago
• nccgroup / cowcloud
  ☆58Updated last year
• vmware-labs / attack-surface-framework
  Tool to discover external and internal network attack surface
  ☆195Updated 10 months ago
• prjblk / nessus-database-export
  Script to export Nessus results to a relational database for use in reports, analysis, or whatever else.
  ☆65Updated 4 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• telekom-security / cve-2023-3519-citrix-scanner
  Citrix Scanner for CVE-2023-3519
  ☆50Updated last year
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 4 months ago