Alternatives and similar repositories for XSScanner

Users that are interested in XSScanner are comparing it to the libraries listed below

• mirhatx / BestRecon
  BestRecon is a browser-based recon tool to gather information about your target and analyze their security on browser.
  ☆11Updated 4 years ago
• antichown / 0x94TR
  0x94TR Burp Extension - Java version
  ☆31Updated 4 years ago
• numanturle / Log4jNuclei
  Log4j for nuclei
  ☆67Updated 3 years ago
• Trendyol / swagger-parser-burp-extension
  ☆43Updated 6 months ago
• om3rcitak / ozauthmatrix
  IDOR testing tool. Coded during Lunizz live stream.
  ☆31Updated 5 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• Aporlorxl23 / Domporlor
  Subdomain Enumeration Tool
  ☆12Updated 4 years ago
• draftchat / GDchat
  Chatting with a single gmail draft via the Gmail API
  ☆13Updated 5 years ago
• gkhan496 / WDIR
  Good resources about web security that I have read.
  ☆26Updated 2 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• dubey-amit / Web-Cheatsheet
  Vulnerability Cheatsheet
  ☆54Updated 3 years ago
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆150Updated 2 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• utkusen / hash-olimpiyatlari
  ☆33Updated 4 years ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 2 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 4 years ago
• p4pentest / SQLInjector
  Automating SQL Injection in a list of URLs or Request Files
  ☆13Updated 9 years ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆92Updated 3 years ago
• samogod / bugradar
  Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.
  ☆103Updated 3 years ago
• Co0nan / ParamsExtractor
  A burp-suite plugin that extract all parameter names from in-scope requests
  ☆29Updated 3 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆125Updated 5 years ago
• emadshanab / VOIP-Pentesting-checklist-Cheatsheet-Tools
  ☆54Updated 4 years ago
• maverickNerd / BugForaging
  This repo includes my analysis of some public reports.
  ☆57Updated 4 years ago
• merttasci / xss-popupper
  this javascript file creates a pop-up for your xss poc.
  ☆28Updated 8 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• SecTest-Innovera / Malware-Analysis
  Malware Analysis (Zararlı Yazılım Analizi)
  ☆31Updated 6 years ago
• emadshanab / Adobe-Experience-Manager
  ☆33Updated 4 years ago
• ethicalhackingplayground / SubNuke
  Subdomain Takeover tool with web UI
  ☆57Updated 2 years ago
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆50Updated 3 years ago
• Phoenix1112 / ParamReplace
  ☆11Updated 5 years ago