Alternatives and similar repositories for VulnLabs

Users that are interested in VulnLabs are comparing it to the libraries listed below

• no-sec-marko / java-web-vulnerabilities
  Plattform to develop and experiment with existing java web attacks.
  ☆31Updated 7 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆59Updated 6 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆55Updated 7 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• ibr2 / Go-For-OSCP
  ☆18Updated 8 years ago
• PortSwigger / psycho-path
  psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
  ☆18Updated 7 years ago
• destine21 / ZIPFileRaider
  ZIP File Raider - Burp Extension for ZIP File Payload Testing
  ☆72Updated 5 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Updated 7 years ago
• dxa4481 / CSRF-PoC-Genorator
  This is a simple CSRF Proof of Concept generator that supports multiple form encodings and methods
  ☆34Updated 8 years ago
• RihaMaheshwari / XXE-Injection-Payloads
  XXE Injection Payloads
  ☆28Updated 6 years ago
• TheTwitchy / vulnd_xxe
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆26Updated 7 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 6 years ago
• BugBountyResources / Pentesting
  Misc. Public Reports of Penetration Testing and Security Audits.
  ☆35Updated 4 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆48Updated 6 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆147Updated 6 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆65Updated 9 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 5 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆65Updated last year
• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆32Updated 6 years ago
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆41Updated 7 years ago
• rewanthtammana / vuln-headers-extension
  Firefox extension which parses the headers of all the requests which are being flowing through your firefox browser to detect for vulnera…
  ☆62Updated 6 years ago
• ni8walk3r / JWT-Exploitation
  Collection of different exploitation scenarios of JWT.
  ☆21Updated 4 years ago
• Cyb3rMehul / venom
  Auto Recon Bash Script
  ☆31Updated 9 months ago
• tsondt / oscp
  My notebook for OSCP Lab
  ☆26Updated 8 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆44Updated last year
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 5 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• hoainam1989 / training-application-security
  This repository for training application security.
  ☆26Updated 6 years ago
• SafeBreach-Labs / HRS
  ☆50Updated 5 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago