swaggerHole VS DefaultCreds-cheat-sheet

What are some alternatives?

arno - An automation tool to install the most popular tools for bug bounty or pentesting.

SecLists - SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

reconspider - 🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

my-wordlists - wordlists i use for testing security/security testing or whatever you want to call it

Dome - Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

mssql-spider - Automated exploitation of MSSQL servers at scale

webstor - WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.

mongoaudit - 🔥 A powerful MongoDB auditing and pentesting tool 🔥

kitsec-core - Ethical hacking, made easy.

powershell_commands - Personal sheet for PowerShell 🧢

weird_proxies - Reverse proxies cheatsheet

Villain - Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).