Alternatives and similar repositories for Web-App-Hacking-Notes

Users that are interested in Web-App-Hacking-Notes are comparing it to the libraries listed below

• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆102Updated 4 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆86Updated 8 years ago
• bilbomal / BB-Tips
  Collection of Bug Bounty Tips
  ☆63Updated 5 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆63Updated 8 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• Vanshal / Pentesting-Cheatsheet
  ☆47Updated 5 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆55Updated 6 years ago
• aungthurhahein / Red-Team-Curation-List
  A list to discover work of red team tooling and methodology for penetration testing and security assessment
  ☆78Updated 6 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆226Updated 4 months ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆149Updated 6 years ago
• hexrom / PenetrationTesting-Playbook
  Penetration Testing Playbook (PTP)
  ☆175Updated 6 years ago
• j0bin / Pentest-Resources
  ☆121Updated 8 years ago
• upgoingstar / hackerone_public_reports
  Finds all public bug reports on reported on Hackerone
  ☆94Updated 9 years ago
• epi052 / recursive-gobuster
  DEPRECATED - A wrapper around gobuster that automatically scans newly discovered directories.
  ☆116Updated 4 years ago
• pentesteracademy / vulnoscollection
  Vulnerable OS Collection is a collection of four Ubuntu based OSes containing real world vulnerable web applications.
  ☆58Updated 7 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆236Updated last month
• vavkamil / bugbountytip.com
  Flask powered website to display tweets with a hashtag #bugbountytip
  ☆16Updated 5 years ago
• r00tgate / bugbounty101
  An entry level resource to learning bug bounty.
  ☆27Updated 7 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 7 months ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆142Updated 6 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆134Updated last year
• executeatwill / OSCP-Treasure-Cave
  Collection of OSCP study material && tools.
  ☆78Updated 6 years ago
• andr3w-hilton / Penetration_Testing_Resources
  This repo contains resources to help learn and understand penetration testing
  ☆15Updated 7 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆105Updated 3 years ago
• incogbyte / jsearch
  ☆32Updated 4 years ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆37Updated 5 years ago
• edduu / Arjun
  HTTP parameter discovery suite.
  ☆94Updated 5 years ago
• BugBountyResources / Resources
  A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms ti…
  ☆91Updated 4 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year