Alternatives and similar repositories for pen-test-automation

Users that are interested in pen-test-automation are comparing it to the libraries listed below

• secdec / astam-correlator
  Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…
  ☆24Updated 2 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 7 years ago
• armourbird / csf
  ArmourBird CSF - Container Security Framework
  ☆44Updated 3 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆52Updated 6 years ago
• laconicwolf / Dirscover
  A multi-processed, multi-threaded scanner to discover web directories on multiple URLs.
  ☆21Updated 5 years ago
• pbnj / YAS3BL
  🔓 Yet Another S3 Bucket Leak
  ☆29Updated 7 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 5 years ago
• menzow / sn1per-docker
  Dockerized version of Sn1per (https://github.com/1N3/Sn1per)
  ☆60Updated 7 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆48Updated 6 years ago
• Coalfire-Research / sqlinator
  Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
  ☆81Updated 2 years ago
• appsecco / ansible-module-owasp-zap
  Ansible module for OWASP ZAP using Python API to scan web targets for security issues
  ☆14Updated 7 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆44Updated last year
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆58Updated 5 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆37Updated 12 years ago
• n4xh4ck5 / CMSsc4n
  Tool to identify if a domain is a CMS such as Wordpress, Moodle, Joomla, Drupal or Prestashop
  ☆112Updated 7 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆48Updated 2 years ago
• nixwizard / kube-alien
  ☆25Updated 4 years ago
• sirpsycho / firecall
  Automate SSH communication with firewalls, switches, etc.
  ☆27Updated 7 years ago
• bugbountyworld / BugBountyWorld
  ☆13Updated 2 years ago
• shieldfy / AVWA
  Advanced Vulnerable Web Application (AVWA)
  ☆14Updated 8 years ago
• allfro / dotNetBeautifier
  A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…
  ☆12Updated 10 years ago
• nightwatchcybersecurity / airflowscan
  Checklist and tools for increasing security of Apache Airflow
  ☆32Updated 4 years ago
• pwntester / XStreamServer
  RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler
  ☆20Updated 11 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated last year
• yehgdotnet / S3Scanner
  Scan for open S3 buckets and dump
  ☆38Updated 7 years ago
• RhinoSecurityLabs / Presentations
  A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
  ☆38Updated 7 years ago
• vegabird / prithvi
  A Report Generation Tool for Security Assessment
  ☆65Updated 6 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 6 years ago
• cystack / webfuzzer
  WebFuzzer - Web Application Security Scanner by Cystack Team
  ☆25Updated 8 years ago
• pownjs / duct
  Essential tool for finding blind injection attacks.
  ☆50Updated 6 years ago