Alternatives and similar repositories for sj

Users that are interested in sj are comparing it to the libraries listed below

• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆749Updated 2 years ago
• g0ldencybersec / CloudRecon
  ☆521Updated last year
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…
  ☆719Updated last month
• jthack / ffufai
  AI-powered ffuf wrapper
  ☆641Updated 2 months ago
• g0ldencybersec / gungnir
  CT Log Scanner
  ☆513Updated last month
• trufflesecurity / xsshunter
  ☆537Updated 2 months ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆402Updated last month
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆489Updated this week
• xm1k3 / cent
  Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…
  ☆1,038Updated 5 months ago
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆500Updated last week
• bitquark / shortscan
  An IIS short filename enumeration tool
  ☆1,099Updated last year
• waf-bypass-maker / waf-community-bypasses
  ☆545Updated last year
• projectdiscovery / fuzzing-templates
  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
  ☆87Updated last year
• w9w / JSA
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆560Updated 11 months ago
• projectdiscovery / alterx
  Fast and customizable subdomain wordlist generator using DSL
  ☆915Updated this week
• AggressiveUser / AllForOne
  AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
  ☆731Updated last year
• hakluke / hakip2host
  hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
  ☆454Updated 3 years ago
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆382Updated last year
• hakluke / hakoriginfinder
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆975Updated 2 years ago
• hakluke / haktrails
  Golang client for querying SecurityTrails API data
  ☆581Updated 3 weeks ago
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆458Updated 2 years ago
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆333Updated last year
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆357Updated 4 months ago
• redhuntlabs / BucketLoot
  BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…
  ☆436Updated last month
• kevin-mizu / domloggerpp
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆747Updated 2 months ago
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆286Updated last year
• reewardius / bbFuzzing.txt
  ☆417Updated 3 weeks ago
• ayadim / Nuclei-bug-hunter
  i will upload more templates here to share with the comunity.
  ☆568Updated last year
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆503Updated 3 years ago
• PalindromeLabs / STEWS
  A Security Tool for Enumerating WebSockets
  ☆365Updated 4 years ago