Alternatives and similar repositories for firefly

Users that are interested in firefly are comparing it to the libraries listed below

• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆407Updated this week
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆373Updated 2 years ago
• projectdiscovery / fuzzing-templates
  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
  ☆74Updated last year
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆274Updated 2 weeks ago
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆243Updated 3 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆306Updated last year
• bnematzadeh / LoggerPlusPlus-API-Filters
  A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles
  ☆223Updated 10 months ago
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆377Updated last week
• projectdiscovery / nuclei-ai-extension
  Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
  ☆532Updated 8 months ago
• dhmosfunk / CVE-2023-25690-POC
  CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …
  ☆283Updated last year
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆227Updated 3 months ago
• PortSwigger / BChecks
  BChecks collection for Burp Suite Professional and Burp Suite DAST
  ☆712Updated 2 weeks ago
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆393Updated this week
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications
  ☆227Updated 6 months ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆670Updated last year
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆489Updated 3 years ago
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆258Updated 6 months ago
• hahwul / authz0
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆424Updated last month
• PortSwigger / auth-analyzer
  ☆105Updated last year
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆356Updated 3 years ago
• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆283Updated last year
• hadriansecurity / subwiz
  A lightweight GPT model, trained to discover subdomains.
  ☆288Updated last week
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆227Updated last year
• daffainfo / all-about-apikey
  Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
  ☆280Updated last year
• trickest / mksub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆271Updated last year
• ngalongc / AuthzAI
  ☆184Updated 10 months ago
• mdsecresearch / BurpSuiteSharpener
  ☆522Updated 2 years ago
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆222Updated last year
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆349Updated last year
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆209Updated 5 months ago