Alternatives and similar repositories for pen-test-automation

Users that are interested in pen-test-automation are comparing it to the libraries listed below

• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 8 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆55Updated 6 years ago
• menzow / sn1per-docker
  Dockerized version of Sn1per (https://github.com/1N3/Sn1per)
  ☆60Updated 7 years ago
• appsecco / ansible-module-owasp-zap
  Ansible module for OWASP ZAP using Python API to scan web targets for security issues
  ☆15Updated 8 years ago
• Coalfire-Research / sqlinator
  Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
  ☆80Updated 3 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 5 years ago
• shieldfy / AVWA
  Advanced Vulnerable Web Application (AVWA)
  ☆14Updated 8 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆58Updated 5 years ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 6 years ago
• phin3has / docker-pentest-lists
  Docker Pentest Lists are collection of Dockerfiles or Links to Dockerfiles for containers used in Penetration Tests
  ☆21Updated 8 years ago
• nixwizard / kube-alien
  ☆25Updated 4 years ago
• secdec / astam-correlator
  Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…
  ☆24Updated 3 years ago
• armourbird / csf
  ArmourBird CSF - Container Security Framework
  ☆44Updated 3 years ago
• ac-mercury / mercuryiss-kali
  Disposable Kali Linux containers for Mercury ISS / pentesting engagements.
  ☆38Updated 6 years ago
• redtimmy / OAMBuster
  Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)
  ☆25Updated 6 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆47Updated 6 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆44Updated last year
• pwntester / ViewStatePayloadGenerator
  ViewState Payload Generator
  ☆27Updated 7 years ago
• vegabird / prithvi
  A Report Generation Tool for Security Assessment
  ☆65Updated 7 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated last year
• 0x4D31 / honeyku
  A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).
  ☆65Updated 6 years ago
• anshumanbh / FASTSAM
  Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices
  ☆18Updated 9 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Updated 12 years ago
• Andromeda1957 / LinPwn
  Interactive Post Exploitation Tool
  ☆37Updated 6 years ago
• laconicwolf / Dirscover
  A multi-processed, multi-threaded scanner to discover web directories on multiple URLs.
  ☆21Updated 6 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 7 years ago
• viperbluff / WAF_buster
  Disrupt WAF by abusing SSL/TLS Ciphers
  ☆48Updated 7 years ago
• pwntester / XStreamServer
  RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler
  ☆20Updated 12 years ago
• viperbluff / PortWitness
  Tool for checking Whether a domain or its multiple sub-domains are up and running.
  ☆72Updated 6 years ago
• rojan-rijal / Pyrate
  Practice Web App written in python with some vulnerabilities.
  ☆34Updated 4 years ago