Alternatives and similar repositories for xwaf

Users that are interested in xwaf are comparing it to the libraries listed below

• Lucifer1993 / struts-scan
  Python2编写的struts2漏洞全版本检测和利用工具
  ☆1,426Updated 6 years ago
• FeeiCN / ESD
  Enumeration sub domains(枚举子域名)
  ☆1,063Updated 3 years ago
• WangYihang / Webshell-Sniper
  Manage your website via terminal
  ☆424Updated 4 years ago
• Xyntax / POC-T
  渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
  ☆1,958Updated 3 years ago
• xl7dev / BurpSuite
  BurpSuite using the document and some extensions
  ☆974Updated 2 years ago
• lijiejie / BBScan
  A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers
  ☆2,314Updated 5 months ago
• LandGrey / webshell-detect-bypass
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,723Updated 4 years ago
• Lucifer1993 / AngelSword
  Python3编写的CMS漏洞检测框架
  ☆1,457Updated 2 years ago
• az0ne / AZScanner
  自动漏洞扫描器，自动子域名爆破，自动爬取注入，调用sqlmapapi检测注入，端口扫描，目录爆破，子网段服务探测及其端口扫描，常用框架漏洞检测。 Automatic scanner, automatic sub domain blasting, automatic cra…
  ☆514Updated 8 years ago
• alpha1e0 / pentestdb
  WEB渗透测试数据库
  ☆679Updated 6 years ago
• dr0op / WeblogicScan
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆963Updated last year
• lijiejie / IIS_shortname_Scanner
  an IIS shortname Scanner
  ☆554Updated 2 years ago
• ysrc / GourdScanV2
  被动式漏洞扫描系统
  ☆872Updated 7 years ago
• l3m0n / Bypass_Disable_functions_Shell
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,196Updated last year
• ring04h / weakfilescan
  动态多线程敏感信息泄露检测工具
  ☆1,143Updated 8 years ago
• brianwrf / hackUtils
  It is a hack tool kit for pentest and web security research.
  ☆514Updated 4 years ago
• 3xp10it / xcdn
  Try to find out the real ip behind cdn
  ☆340Updated 3 years ago
• w-digital-scanner / w13scan
  Passive Security Scanner (被动式安全扫描器)
  ☆1,937Updated 2 years ago
• bit4woo / teemo
  A Domain Name & Email Address Collection Tool
  ☆996Updated 4 years ago
• BugScanTeam / DNSLog
  DNSLog 是一款监控 DNS 解析记录和 HTTP 访问记录的工具。
  ☆1,421Updated 6 years ago
• w-digital-scanner / w9scan
  Plug-in type web vulnerability scanner
  ☆1,138Updated 5 years ago
• bsmali4 / xssfork
  ☆711Updated 5 years ago
• repoog / GitPrey
  Searching sensitive files and contents in GitHub associated to company name or other key words
  ☆608Updated 4 years ago
• CHYbeta / cmsPoc
  CMS渗透测试框架-A CMS Exploit Framework
  ☆585Updated 7 years ago
• bit4woo / reCAPTCHA
  reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件
  ☆807Updated last year
• w-digital-scanner / w12scan
  🚀 A simple asset discovery engine for cybersecurity. (网络资产发现引擎)
  ☆1,342Updated 2 years ago
• WangYihang / SourceLeakHacker
  A multi threads web application source leak scanner
  ☆387Updated this week
• SecWiki / CMS-Hunter
  CMS漏洞测试用例集合
  ☆1,757Updated 6 years ago
• coffeehb / Some-PoC-oR-ExP
  各种漏洞poc、Exp的收集或编写
  ☆2,441Updated last year
• Ridter / Pentest
  tools
  ☆544Updated 6 years ago