Alternatives and similar repositories for Web-CTF-Challenges

Users that are interested in Web-CTF-Challenges are comparing it to the libraries listed below

• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• defparam / haptyc
  ☆94Updated 3 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• janmasarik / bugshop
  ☆44Updated 4 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 4 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆48Updated 6 years ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 2 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆31Updated 2 years ago
• Universe1122 / smuggler.py
  HTTP request smuggling tools
  ☆18Updated 4 years ago
• synopsys-sig / ATOR-Burp
  ☆81Updated last year
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 3 years ago
• Cache-Money / chronorace
  ☆71Updated 3 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 3 years ago
• pelaohxc / postMessageFinder
  ☆37Updated 4 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• Rhynorater / reports
  ☆59Updated 11 months ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆82Updated 11 months ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆98Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆71Updated 3 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆122Updated last year
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆109Updated 3 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• MrTuxracer / advisories
  Security Advisories
  ☆32Updated last month
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆72Updated 3 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆61Updated 3 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆61Updated 3 years ago