Alternatives and similar repositories for Recon

Users that are interested in Recon are comparing it to the libraries listed below

• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆136Updated 6 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆110Updated 6 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆118Updated 4 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆75Updated 3 years ago
• hktalent / CVE-2020-2551
  how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP
  ☆211Updated 2 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆62Updated 7 years ago
• jas502n / SpringBootVulExploit
  SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 checklist
  ☆29Updated 5 years ago
• fngoo / sh
  Recon_nuke
  ☆9Updated 5 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆247Updated 4 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆123Updated 6 years ago
• PortSwigger / authz
  ☆107Updated 8 years ago
• gh0stkey / JSONandHTTPP
  Burp Suite Plugin: Convert the json text that returns the body into HTTP request parameters.
  ☆103Updated 4 years ago
• masahiro331 / CVE-2020-9484
  ☆127Updated 3 years ago
• xawdxawdx / sentrySSRF
  Tool to searching sentry config on page or in javascript files and check blind SSRF
  ☆70Updated last year
• CHYbeta / WAF-Bypass
  WAF Bypass Cheatsheet
  ☆214Updated 7 years ago
• sdsecurity / pooltest
  网上收集的一些利用工具
  ☆18Updated 2 years ago
• arbazkiraak / web-cache-deception-checker
  Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages
  ☆44Updated 3 years ago
• profmoriarity / rexsser
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆75Updated 4 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆140Updated 6 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago
• theLSA / burp-sensitive-param-extractor
  burpsuite extension for check and extract sensitive request parameter
  ☆113Updated 4 years ago
• ZephrFish / XSSPayloads
  Cross Site Scripting Payloads -- Variations
  ☆72Updated 2 months ago
• rakjong / BurpPlugin_Shiro
  判断是否使用shiro的burp插件
  ☆10Updated 4 years ago
• jiangsir404 / Xss-Sql-Fuzz
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆62Updated 6 years ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆77Updated 7 years ago
• zer0yu / Berserker
  A list of useful payloads for Web Application Security and Pentest/CTF
  ☆305Updated 11 months ago
• mpgn / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆317Updated 5 years ago
• jas502n / CNVD-C-2019-48814
  WebLogic wls9-async反序列化远程命令执行漏洞
  ☆242Updated 6 years ago
• dozernz / cve-2020-11651
  ☆105Updated 5 years ago
• jas502n / cve-2019-2618
  Weblogic Upload Vuln(Need username password)-CVE-2019-2618
  ☆173Updated 6 years ago