Alternatives and similar repositories for Web-CTF-Cheatsheet

Users that are interested in Web-CTF-Cheatsheet are comparing it to the libraries listed below

• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆29Updated 4 years ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆78Updated 5 years ago
• daffainfo / my-nuclei-templates
  Some contributions in the nuclei-templates repository
  ☆60Updated 3 years ago
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆49Updated 3 years ago
• jayateertha043 / FireOver
  A FireBase DataBase TakeOver Tool along with POC Generator
  ☆33Updated 4 years ago
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆58Updated 3 years ago
• dumorewithcode / purl
  ☆39Updated 3 years ago
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆45Updated 4 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆128Updated 6 years ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆112Updated 3 years ago
• ethicalhackingplayground / gocrawler
  ☆33Updated 3 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 10 months ago
• Josue87 / resolveDomains
  Given a list of domains, you resolve them and get the IP addresses.
  ☆48Updated 3 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆69Updated 5 years ago
• j3ssie / cdnstrip
  Striping CDN & WAF IPs from a list of IP Addresses
  ☆79Updated 7 months ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 3 years ago
• ethicalhackingplayground / erebus
  Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
  ☆134Updated 4 years ago
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆51Updated 3 years ago
• z3dc0ps / 0x0p1n3r
  0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover
  ☆57Updated 4 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 3 years ago
• 0xsapra / fuzzparam
  ☆59Updated 4 years ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 5 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆73Updated 3 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆34Updated 3 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆73Updated 2 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆61Updated 4 years ago