Alternatives and similar repositories for Web-CTF-Cheatsheet

Users that are interested in Web-CTF-Cheatsheet are comparing it to the libraries listed below

• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆29Updated 4 years ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆78Updated 5 years ago
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆49Updated 3 years ago
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 3 years ago
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆45Updated 4 years ago
• daffainfo / my-nuclei-templates
  Some contributions in the nuclei-templates repository
  ☆59Updated 3 years ago
• assetnote / jira-mobile-ssrf-exploit
  Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
  ☆88Updated 3 years ago
• ethicalhackingplayground / gocrawler
  ☆33Updated 3 years ago
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆59Updated 3 years ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆112Updated 3 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 9 months ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆61Updated 4 years ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 5 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆62Updated 5 months ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆73Updated 3 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆127Updated 6 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• j3ssie / cdnstrip
  Striping CDN & WAF IPs from a list of IP Addresses
  ☆79Updated 6 months ago
• Josue87 / resolveDomains
  Given a list of domains, you resolve them and get the IP addresses.
  ☆49Updated 3 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• 0xsapra / fuzzparam
  ☆59Updated 4 years ago
• duckstroms / xss-reflector
  XSS reflector vulnerabilities exploitation extended.
  ☆27Updated 4 years ago
• R0X4R / Pinaak
  A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan
  ☆79Updated 4 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆69Updated 5 years ago
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆50Updated 3 years ago
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆52Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• ethicalhackingplayground / erebus
  Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
  ☆134Updated 4 years ago
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆34Updated 3 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆73Updated 2 years ago