Alternatives and similar repositories for exploit-workshop

Users that are interested in exploit-workshop are comparing it to the libraries listed below

• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 3 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• digininja / authlab
  A lab to play with authentication and authorisation problems
  ☆96Updated 2 years ago
• dogangcr / vulnerable-sso
  vulnerable single sign on
  ☆148Updated 11 months ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆178Updated 2 years ago
• mattvaldes / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆70Updated last year
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• nightowl131 / AAPG
  [A]ndroid [A]pplication [P]entest [G]uide
  ☆124Updated 5 years ago
• rsrdesarrollo / generator-burp-extension
  Everything you need about Burp Extension Generation
  ☆155Updated 2 years ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆134Updated 5 years ago
• Santandersecurityresearch / corsair_scan
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆122Updated 2 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆122Updated 2 years ago
• parsiya / eslinter
  Manual JavaScript Linting is a Bug
  ☆49Updated 4 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 4 years ago
• cranelab / webapp-tech
  ☆44Updated 4 years ago
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆200Updated last year
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆134Updated 4 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆139Updated last year
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆353Updated 4 years ago
• ajdumanhug / awesome-bug-bounty-tips
  A curated list of amazingly bug bounty tips from security researchers around the world.
  ☆105Updated 6 years ago
• PortSwigger / stepper
  A natural evolution of Burp Suite's Repeater tool
  ☆93Updated last year
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆216Updated 5 years ago
• TypeError / Bookmarks
  Reclaim control of your Burp Suite Repeater tabs with this powerful extension
  ☆67Updated 3 years ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆37Updated 5 years ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆199Updated last month
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆85Updated 5 years ago
• LewisArdern / metasecjs
  MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts
  ☆81Updated 2 years ago
• PortSwigger / scan-check-builder
  Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
  ☆71Updated 3 years ago
• PortSwigger / distribute-damage
  Evenly distributes scanner load across targets
  ☆89Updated 3 months ago